Cyber Alert: Office 365 Phishing

July 12, 2019

 hero Image

Cyber Threat Alert: Office 365 Phishing Emails

Align would like to alert you about a new phishing campaign targeting Office 365 users. Cybercriminals are leveraging the campaign to compromise end-user Microsoft credentials.

The potential victim may receive an email advising that several messages were pending delivery and asking to perform a particular action, such as, click on a “Resolve” or “Read message” button.

In some instances, the malicious email may bypass your anti-spam link inspection or content filtering.

Upon clicking on the “Resolve” or “Read message” button, you will be redirected to a crafted website that looks like the Microsoft Office 365 login page.

Align Recommendations to Prevent Falling Victim to this Scam:

  • Review the sample of the phishing email above for your reference.
  • Always review the “From” field to check for a suspicious address.
  • Hover over links within the email before clicking. If the URL looks suspicious, do not click.
  • If you have any doubts about an email, please contact your managed services provider (MSP) or IT provider.
  • Contact your MSP or IT provider to make sure that the Multi-Factor Authentication (MFA) is enabled for all Office 365 users. 
For more information, please contact Align Managed Services via email

-The Align Managed Services Team

Tags: Cybersecurity