A new, widespread phishing operation that targets credentials for Microsoft email services uses a personalised, proxy-based phishing kit to get around multi-factor authentication.
The phishing campaign's targets include fin-tech, lending, accounting, insurance, and Federal Credit Union organizations in the US, UK, New Zealand, and Australia.
"id": "MIC142611122",
"linkid": "Microsoft",
"type": "Phishing",
"date": "08/2017",
"severity": "60",
"impact": "2",
"explanation": "Attack limited on finance or reputation"