Phishers use encrypted file attachments steal Microsoft 365 account credentials

Phishers are using encrypted restricted-permission messages (.rpmsg) attached in phishing emails to steal Microsoft 365 account credentials. “[The campaigns] are low volume, targeted, and use trusted cloud services to send emails and host content (Microsoft and Adobe),” say Trustwave researchers Phil Hay and Rodel Mendrez. “The initial emails are sent from compromised Microsoft 365 accounts and appear to be targeted towards recipient addresses where the sender might be familiar.” Phishing emails with Microsoft Encrypted Restricted … More →

The post …

account adobe attachments campaigns cloud cloud services credentials cybercrime don't miss emails encrypted encryption file host hot stuff low messages microsoft microsoft 365 permission phil phishing phishing emails researchers restricted rpmsg send services steal trusted cloud trustwave