More Microsoft 365 phishing attacks are using this dangerous new method – here’s what you need to know

Modern-day phishing methods include abusing legitimate cloud services to bypass email security solutions and land a malicious email right into the victim’s inbox. 

In this latest example, cybersecurity researchers from Trustwave found a threat actor abusing Microsoft’s Rights Management Services (RMS) to deliver links to fake landing pages to their victims. The attacks are highly targeted and quite difficult to mitigate, the researchers are saying.

Leave a Comment

Your email address will not be published. Required fields are marked *

Scroll to Top