Severity
Medium
Analysis Summary
Threat actors are actively dropping phishing emails impersonating Microsoft Outlook app and robbing off credentials of the users with their tactics. This has been the latest ongoing phishing campaign actively targeting multiple organizations at the same time. Threat actors are asking for username password and email address in their redirected page and asking for credentials of the target victims.
Impact
- Credential theft
- Exposure of sensitive data
Indicators of Compromise
URL
- hxxps[:]//staffbenefitsforall[.]weebly[.]com
Remediation
- Block all threat indicators at your respective controls.
- Search for IOCs in your environment.