top of page

Large-Scale AiTM Attack targeting enterprise users of Microsoft email services

Security researchers discovered a new strain of a large-scale phishing campaign, which uses adversary-in-the-middle (AiTM) techniques along with several evasion tactics. Similar AiTM phishing techniques were used in another phishing campaign described by Microsoft recently.


ATT&CK IDS: T1090 - Proxy, T1140 - Deobfuscate/Decode Files or Information, T1553 - Subvert Trust Controls, T1555 - Credentials from Password Stores, T1566 - Phishing, T1574 - Hijack Execution Flow, T1189 - Drive-by Compromise

Read More:

bottom of page