Microsoft Uncovers Banking AitM Phishing and BEC Attacks Targeting Financial Giants

According to Microsoft, a new multi-stage adversary-in-the-middle phishing and business email compromise attack targets banking and financial services organisations. “The attack originated from a compromised trusted vendor and transitioned into a series of AiTM attacks and follow-on BEC activity spanning multiple organisations,” the tech giant revealed in a report on Thursday.

Microsoft criticised the group for using an indirect proxy to carry out the attack and is tracking the cluster under the newly coined name Storm-1167.This demonstrated the continued sophistication of AitM attacks and allowed the attackers to adaptably alter the phishing sites to their targets and carry out session cookie stealing.

Microsoft Uncovers Banking AitM Phishing and BEC Attacks Targeting Financial Giants

Solutions

Services

Services

Knowledge

Solutions

Industries

Contact

Invinsense

About

INDIA | Ahmedabad

SRI LANKA

KUWAIT

USA | New York

UNITED KINGDOM | London

Address

Microsoft Uncovers Banking AitM Phishing and BEC Attacks Targeting Financial Giants

09-Jun-23

Solutions

Services

Services

Knowledge

Solutions

Industries

Contact

Invinsense

About

INDIA | Ahmedabad

SRI LANKA

KUWAIT

USA | New York

UNITED KINGDOM | London

Address