"Attackers Leverage Microsoft Dynamics 365 to Phish Users"

According to Avanan researchers, attackers are using Microsoft Dynamics 365 Customer Voice to circumvent email filters and deliver phishing emails into Microsoft users' inboxes. Microsoft Dynamics 365 is an Enterprise Resource Planning (ERP) and Customer Relationship Management (CRM) application suite. Customer Voice is one of the applications, and it collects data and feedback from customers through surveys, phone calls, and other means. The attackers have set up Microsoft Dynamics 365 Customer Voice accounts and are using them to send phishing emails claiming that recipients have received a voicemail. To the end user, this appears to be a voicemail from a customer that should be given attention. According to Avanan cybersecurity researcher Jeremy Fuchs, clicking on it is the natural next step. The link in the email is a legitimate Microsoft Customer Voice link leading to a standard Microsoft page, which is enough to convince email filters and security scanners that the email is legitimate and allow it to reach users' inboxes. Users who click the "Play Voicemail" button on this page are redirected to a spoofed Microsoft login page. However, in this case, careful users will notice that the URL of the phishing page is not related to Microsoft. This article continues to discuss attackers' abuse of Microsoft Dynamics 365 Customer Voice to carry out phishing attacks, as well as the continued exploitation of trusted services by hackers. 

Help Net Security reports "Attackers Leverage Microsoft Dynamics 365 to Phish Users"