Threat actors are targeting Office 365 and Google Workspace in a new campaign that sends messages via a legitimate domain associated with a Moscow road safety centre.
Researchers discovered that attackers are spoofing WhatsApp voice message notifications as part of a malicious phishing campaign that uses a legitimate domain to spread data-stealing malware. Armorblox researchers discovered the malicious campaign targeting Office 365 and Google Workspace accounts via emails sent from a domain associated with the Center for Road Safety, a Russian entity believed to be based in Moscow.
The site is legitimate, as it is connected to the Moscow State Road Safety operations and is administered by the Russian Federation’s Ministry of Internal Affairs.
Read More: https://threatpost.com/attackers-whatsapp-voice-message/179244/
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.