Microsoft discovered a large-scale business email compromise (BEC) campaign that targeted over 120 organizations and used typo-squatted domains that were registered only days before the attacks began.
BEC scammers use a variety of techniques to gain access to business email accounts, which they then use to divert payments to accounts they manage or to threaten employees in gift card scams.
The Microsoft 365 Defender Threat Intelligence Team said, “We observed patterns in using the correct domain name but an incorrect TLD, or slightly spelling the company name wrong. These domains were registered just days before this email campaign began.”
To Read More: bleepingcomputer