Cyber Alert: Office 365 Phishing

Written by Align | 2019

Align would like to alert you about a new phishing campaign targeting Office 365 users. Cybercriminals are leveraging the campaign to compromise end-user Microsoft credentials.

The potential victim may receive an email advising that several messages were pending delivery and asking to perform a particular action, such as, click on a “Resolve” or “Read message” button.

In some instances, the malicious email may bypass your anti-spam link inspection or content filtering.

Upon clicking on the “Resolve” or “Read message” button, you will be redirected to a crafted website that looks like the Microsoft Office 365 login page.

Align Recommendations to Prevent Falling Victim to this Scam:

Review the sample of the phishing email above for your reference.
Always review the “From” field to check for a suspicious address.
Hover over links within the email before clicking. If the URL looks suspicious, do not click.
If you have any doubts about an email, please contact your managed services provider (MSP) or IT provider.
Contact your MSP or IT provider to make sure that the Multi-Factor Authentication (MFA) is enabled for all Office 365 users.

For more information, please contact Align Managed Services via email cyber@align.com.

-The Align Managed Services Team
cyber@align.com
www.align.com
www.align.com/support

View full post

Cyber Alert: Office 365 Phishing

Cyber Threat Alert: Office 365 Phishing Emails

Align Recommendations to Prevent Falling Victim to this Scam: