Seleccionar página

Retarus Press Release:

Retarus alert: Bogus Microsoft 365 emails in circulation

Devious variant of phishing simulates password verification

Madrid, 21/02/2018 // The security experts at Retarus are cautioning users about a particularly sneaky wave of phishing attacks: Personalized phishing mails with a deceptively realistic Microsoft design and layout are currently doing the rounds, amongst other things requesting recipients to enter and confirm their passwords. Retarus is therefore advising users to check any links contained in such messages with the utmost care. Additional protection is provided by special email security solutions which boast comprehensive filtering of phishing messages and the latest advanced threat protection functions.

The phishing email currently circulating has the subject line “Update Your Account Information To Avoid Service Suspension” and purports to be from the sender “Microsoft 365” (@office.com). In the email, recipients are instructed to update their user details stored with Microsoft 365. The link contained in the message leads to a website which resembles that of Microsoft with deceptive accuracy. The exceptional feature of this attack is that the email makes a credible impression by requesting that users enter their passwords twice for verification. The fraudulent emails moreover resemble the genuine message both optically and in terms of the contents. They are formulated using correct language and contain a plausible sender address as well as authentic logos, fonts and colors. Those entering their login details are opening their Microsoft 365 accounts to the online fraudsters, including all data and documents that it contains.

Increased vigilance and advanced threat protection for optimum security

To safeguard against the dangers posed by these types of phishing attempts, increased vigilance and close attention to the plausibility of the message are essential. In the business environment, companies should sensitize their employees about dealing with emails that request user details without authorization. The linked destination address should be checked carefully. It is also possible to check the authenticity of the referenced website by means of the encryption symbol in the address field of the browser. For Microsoft 365 users, when in doubt it is advisable to enter the Microsoft web address manually into the browser and log into the customer area there.

In addition to raising awareness, professional email security services also assist in protecting companies from such phishing attacks. Specialized providers like Retarus augment their filter rules continuously ensuring that they remain updated at all times. At the same time, innovative mechanisms such as Retarus‘ Advanced Threat Protection examine all links contained in emails, for instance through time-of-click protection, each and every time they are clicked on and compare them in real-time with pertinent phishing databases. In this way, clicks made within dubious emails are intercepted effectively, while the user receives a security alert.

Screenshot Phishing Mail

About Retarus

Retarus is a global provider of APIs, gateways, and applications for messaging and email management for business processes – with top performance, security, and data protection, provided from the company's self-operated data centers around the globe. Founded in 1992 and headquartered in Munich, Germany, Retarus is owner-managed and proud of its innovation power. The company employs a staff of around 500 at 20 locations on four continents. Retarus' services are leveraged by the world's leading companies. The services are sold directly by Retarus or in close collaboration with selected partners. Analysts constantly commend Retarus' outstanding quality and reliability. More details: www.retarus.es

Press Contact Form

  • Este campo está oculto cuando se visualiza el formulario
  • Este campo está oculto cuando se visualiza el formulario
  • Este campo es un campo de validación y debe quedar sin cambios.

Sala de Prensa

Para ver todos los comunicados de prensa, visite nuestra Sala de Prensa.

Compartir:

Download

Picture // 106 KB
Las imágenes/los medios se ponen a libre disposición para cualquier reportaje relacionado publicado en medios de imprenta u online a nivel nacional e internacional.

Siempre al día

¿Usted desea recibir información periódica de Retarus? Nuestro boletín de noticias le mantendrá siempre al día.

Centro de prensa

retarus (Ibérica) S.L.U.
Departamento de Prensa
C/ Cedaceros nº10, 4ª Planta Izquierda
28014 Madrid
España
 
+34 91 78938-00
+34 91 90490-00
press@es.retarus.com