Microsoft has issued a warning about a sophisticated multi-stage adversary-in-the-middle (AitM) phishing and business email compromise (BEC) campaign targeting organizations in the energy sector. This campaign exploits SharePoint file-sharing services to deliver phishing payloads and employs inbox rule creation to maintain persistence and avoid detection by users. The Microsoft Defender Security Research Team emphasizes the urgent need for vigilance against such threats. Organizations are advised to enhance their security measures to counteract these tactics.
Want More Context? 🔎
Loading PerspectiveSplit analysis...
