Phishing uses Azure Static Web Pages to impersonate Microsoft:
Phishing attacks are abusing Microsoft Azure's Static Web Apps service to steal Microsoft, Office 365, Outlook, and OneDrive credentials.
Azure Static Web Apps is a Microsoft service that helps build and deploy full-stack web apps to Azure from GitHub or Azure DevOps code repositories.
It allows developers to use custom domains for branding web apps, and it provides web hosting for static content such as HTML, CSS, JavaScript, and images.
As security researcher MalwareHunterTeam discovered, threat actors have also noticed that the custom branding and the web hosting features can easily be used to host static landing phishing pages.
Attackers are now actively using Microsoft's service against its customers, actively targeting users with Microsoft, Office 365, Outlook, and OneDrive accounts.
As shown below, some of the landing pages and login forms used in these phishing campaigns look almost exactly like official Microsoft pages.
(Score: 4, Funny) by Gaaark on Friday April 08 2022, @11:43AM (2 children)
How's your TCO now, Microsoft?
When will people ever learn?
--- Please remind me if I haven't been civil to you: I'm channeling MDC. ---Gaaark 2.0 ---
(Score: 5, Interesting) by Freeman on Friday April 08 2022, @01:58PM
Deep Sigh. Our IT people have gone full Microsoft. Our "share drives" and "documents" folders are all hosted in the cloud now. They've also fully embraced the Microsoft Single-Sign-On, Microsoft Authenticator, Office 365, Outlook in the cloud, etc. They're still supporting our Linux Server, for now.
Joshua 1:9 "Be strong and of a good courage; be not afraid, neither be thou dismayed: for the Lord thy God is with thee"
(Score: 5, Funny) by DannyB on Friday April 08 2022, @03:37PM
Microsoft ALWAYS has the lowest Total Cost of Pwnership.
How often should I have my memory checked? I used to know but...
(Score: 2) by MIRV888 on Friday April 08 2022, @07:36PM
No wonder they changed their name to Vuze.
;-)
(Score: 0) by Anonymous Coward on Friday April 08 2022, @08:21PM
n/t
(Score: 2, Interesting) by Anonymous Coward on Friday April 08 2022, @10:00PM
This isn't particularly shocking. The phishers have been automating their spam to use Microsoft's services to bypass some email filtering. They skip several checks when mail is from their own system. Bonus for the scammers: it's usually on free trial accounts and they don't particularly care if it gets deleted. They'll just spin up another and the game continues.
(Score: -1, Offtopic) by Anonymous Coward on Saturday April 09 2022, @02:52AM
Laser printers were just getting common.
This guy had scanned an IRS envelope and letter.
He would modify the text of the letter to the occasion.
If you crossed this guy, he would make a special letter, just for you.
Then drop it in the mailbox, as if it had been misdelivered.
Went straight to his target, who he usually knew what to raise a ruckus over, even though the IRS had no idea what it was all about.
He related to me how he "got even" with a neighborhood snoop who forced him to remove a TV antenna he had erected in violation of CC&R. Turns out the snoop had rental property in the area and had the contractors doing stuff under the rug to his own house to get the business.
That TV aerial cost the snoop right at a million dollars in fees and penalties before it was over.
And all the time, the IRS had no idea until the snoop was tricked into spilling the beans.
Moral: Don't make trouble for your neighbor! He might have a surprise for you!