"Credential Phishing Attack Uses Fake DHL Emails to Breach Microsoft 365"

Armorblox researchers have detailed a new twist on a credential phishing attack that involves using a fake DHL shipment notification to compromise Microsoft 365 and Exchange Online Protection. The phishing campaign has targeted over 10,000 inboxes at a private educational institution using social engineering, brand impersonation, and a malicious attachment to mimic existing business operations. The emails aimed at the institution were titled "DHL Shipping Document/Invoice Receipt" to entice recipients to open them promptly. The email appears legitimate at first glance, as it has with a response email from DHL. The email's body contains DHL branding and notifies recipients of a customer-sent package that must be redirected to the correct delivery destination. This article continues to discuss the credential phishing campaign that uses fake DHL emails to breach Microsoft 365 and Exchange Online Protection.

SiliconANGLE reports "Credential Phishing Attack Uses Fake DHL Emails to Breach Microsoft 365"