Microsoft 365 login pages may hide phishing attack

News
By published

New Microsoft 365 login pages already being used for phishing scams, company says

(Image credit: wk1003mike / Shutterstock)

Microsoft has warned that hackers are already including the company's latest software updates and releases into online scams.

The company says it has detected a number of phishing campaigns that utilise updated branding from the new versions of Microsoft 365 and the company's Azure cloud platform.

These scams are being used to try and trick victims into giving away their personal or login details to the services, which can then be either sold on by the criminals, or used to gain access to potentially lucrative business networks.

Microsoft phishing

"Office 365 ATP data shows that attackers have started to spoof the new Azure AD sign-in page in multiple phishing campaigns," Microsoft said in a tweet. "We have so far seen several dozens of phishing sites used in these campaigns."

Microsoft 365 saw a major overhaul back in March aimed at making the service a lot more personal for users. 

The upgrade included re-branding existing consumer-facing Office 365 subscriptions under the Microsoft 365 umbrella, with new Personal and Family plans launching in April. 

Popular Microsoft 365 software offerings including Excel, Outlook PowerPoint and Teams were given a significant number of new tools and updates, with users also promised even more new additions coming soon.

Microsoft also began rolling out a new sign-in process for Azure AD in April aimed at reducing the amount of bandwidth needed to access the service. The cloud computing platform has seen huge spike in usage due to the global lockdown and the shift to remote working environment due to the coronavirus pandemic outbreak.

Due to the sheer size of its customer base, Microsoft is often a popular choice for phishing campaigns, with users a regular target for hackers.

Most recently, security researchers uncovered a phishing scam utilising fake email alerts that spoof Microsoft Teams file share and audio chat notifications, with as many as 50,000 emails detected.

Via BleepingComputer

TOPICS
Mike Moore
Mike Moore
Deputy Editor, TechRadar Pro

Mike Moore is Deputy Editor at TechRadar Pro. He has worked as a B2B and B2C tech journalist for nearly a decade, including at one of the UK's leading national newspapers and fellow Future title ITProPortal, and when he's not keeping track of all the latest enterprise and workplace trends, can most likely be found watching, following or taking part in some kind of sport.

Latest in Security
IBM office logo
IBM to provide platform for flagship cyber skills programme for girls
Oracle
Oracle denies data breach after hacker claims to hold six million records
Hacker silhouette working on a laptop with North Korean flag on the background
North Korea unveils new military unit targeting AI attacks
An image of network security icons for a network encircling a digital blue earth.
US government warns agencies to make sure their backups are safe from NAKIVO security issue
Laptop computer displaying logo of WordPress, a free and open-source content management system (CMS)
This top WordPress plugin could be hiding a worrying security flaw, so be on your guard
Computer Hacked, System Error, Virus, Cyber attack, Malware Concept. Danger Symbol
Veeam urges users to patch security issues which could allow backup hacks
Latest in News
Tesla Roadster 2
Tesla is still taking deposits on its long overdue Roadster, despite promising it would arrive in 2020
Samsung HW-Q990D soundbar with Halloween theme over the top
Samsung promises to repair soundbars bricked by its disastrous software update for free – but it'll probably involve shipping
Google Gemini AI
Gmail is adding a new Gemini AI tool to help smarten up your work emails
DJI Mavic 3 Pro
More DJI Mavic 4 Pro leaks seemingly reveal launch date, price and key features of the triple camera drone – here's what to expect
Android 16 logo on a phone
Here's how Android 16 will upgrade the screen unlocking process on your Pixel
Man sitting on sofa, drinking coffee, looking at phone in surprise
Thousands of coffee lovers warned to stop using their espresso machines immediately after reports of burns and lacerations
More about security
Oracle

Oracle denies data breach after hacker claims to hold six million records
IBM office logo

IBM to provide platform for flagship cyber skills programme for girls
Surface Laptop 7

Amazon warns customers about the Surface Laptop – and it’s not just bad news for Microsoft
See more latest
Most Popular
Surface Laptop 7
Amazon warns customers about the Surface Laptop – and it’s not just bad news for Microsoft
vector isometric illustration of a handheld gaming console
SteamOS is about to change handheld gaming PCs as HP finally considers ditching Windows 11
Oracle
Oracle denies data breach after hacker claims to hold six million records
Tesla Roadster 2
Tesla is still taking deposits on its long overdue Roadster, despite promising it would arrive in 2020
DJI Mavic 3 Pro
More DJI Mavic 4 Pro leaks seemingly reveal launch date, price and key features of the triple camera drone – here's what to expect
De'Longhi Linea Classic espresso machine on kitchen counter with hot and cold coffee drinks
I'm a qualified barista, and De'Longhi's latest espresso machine could be this year's best budget buy for coffee lovers
Man sitting on sofa, drinking coffee, looking at phone in surprise
Thousands of coffee lovers warned to stop using their espresso machines immediately after reports of burns and lacerations
Samsung HW-Q990D soundbar with Halloween theme over the top
Samsung promises to repair soundbars bricked by its disastrous software update for free – but it'll probably involve shipping
A Minecraft sheep.
Minecraft developer rejects generative AI, 'it's important that it makes us feel happy to create as humans'
Nvidia AMD
Nvidia rumors suggest it's working on two affordable GPUs to spoil AMD's party