Breaking
December 24, 2024

Fake DocuSign and HubSpot phishing emails target 20,000 Microsoft Azure accounts | usagoldmines.com


  • Unit 42 says phishing campaign targeted automotive, chemical, and industrial compound manufacturing industries
  • More than 20,000 victims were successfully targeted
  • The campaign has been disrupted, but users should still be on their guard

Hackers of potentially Russian or Ukrainian origin have been targeting UK and EU organizations in the automotive, chemical, and industrial compound manufacturing industries with advanced phishing threats, experts have warned.

A report from Unit 42, Palo Alto Networks’ cybersecurity arm, claims to have observed a campaign that started in June 2024, and was still active as of September. The goal of the campaign was to grab people’s Microsoft Azure cloud accounts, and steal any sensitive information found there.

The crooks would either send a Docusign-enabled PDF file, or an embedded HTML link, which would redirect the victims to a HubSpot Free Form Builder link. That link would usually invite the reader to “View Document on Microsoft Secured Cloud,” where the victims would be asked to provide their Microsoft Azure login credentials.

Bulletproof hosting

The majority of the victims are located in Europe (mostly Germany), and the UK. Roughly 20,000 users were “successfully targeted”, the researchers said, adding that at least in a few cases, the victims provided the attackers with login credentials: “We verified that the phishing campaign did make several attempts to connect to the victims’ Microsoft Azure cloud infrastructure,” the researchers said in their writeup.

Besides using custom phishing lures, with organization-specific branding and email formats, the crooks also went for targeted redirections using URLs designed to look like the victim organization’s domain. Furthermore, the miscreants used bulletproof VPS hosts, and reused their phishing infrastructure for multiple operations. Most of the phishing pages were hosted on .buzz domains.

At press time, most of the attack infrastructure was pulled offline – Unit 42 said it worked together with HubSpot to address the abuse of the platform, and engaged with compromised organizations to provide recovery resources. Since most phishing servers are now offline, the researchers said the disruption efforts were effective.

Via The Register

You might also like

​ 

This articles is written by : Nermeen Nabil Khear Abdelmalak

All rights reserved to : USAGOLDMIES . www.usagoldmines.com

You can Enjoy surfing our website categories and read more content in many fields you may like .

Why USAGoldMines ?

USAGoldMines is a comprehensive website offering the latest in financial, crypto, and technical news. With specialized sections for each category, it provides readers with up-to-date market insights, investment trends, and technological advancements, making it a valuable resource for investors and enthusiasts in the fast-paced financial world.

Recent:

10 things I’d never, ever do as an IT professional | usagoldmines.com
Gordon Mah Ung, PCWorld editor and renowned hardware journalist, dies at 58 | usagoldmines.com
The Out-Of-Touch Adults’ Guide to Kid Culture: The Rise of Rizzmas Carols Stephen Johnson | usagoldm...
You Can Now Let Trusted Friends and Family Control Your Google Home Amanda Blum | usagoldmines.com
AirTag 2 Launching Next Year With These New Features Joe Rossignol | usagoldmines.com
$99 Apple TV Might Make a Comeback Next Year Joe Rossignol | usagoldmines.com
How to fix kinked and broken cables in no time | usagoldmines.com
The Amazon Echo Buds Are 50% Off Right Now Pradershika Sharma | usagoldmines.com
Why the Honey Extension Is Being Called the Biggest Influencer Scam of All Time David Nield | usagol...
Apple's Historically 'Bumpy Relationship' With Nvidia Detailed in Report Joe Rossignol | usagoldmine...
Popular iPhone Camera App 'Halide' Gaining Three New Features in 2025 Hartley Charlton | usagoldmine...
Adobe releases software updates to patch security issues | usagoldmines.com
Everything leaving Netflix in January 2025 rowan.davies@futurenet.com (Rowan Davies) | usagoldmines....
FTC orders Marriott and Starwood to boost cybersecurity following major incidents | usagoldmines.co...
Why The Long Kiss Goodnight is a great alt-Christmas movie Jennifer Ouellette | usagoldmines.com
These Easy Holiday Cookie Recipes Have Five Ingredients or Less Allie Chanthorn Reinmann | usagoldmi...
What 'Cardio Load' Really Means in the Fitbit App Beth Skwarecki | usagoldmines.com
US Government Defense bill waters down creation of US Cyber Force, allocates billions to "rip and re...
My first Thunderbolt 5 experience has been a huge bust | usagoldmines.com
The Best Last-Minute Christmas Gift Ideas for Under $30 Meredith Dietz | usagoldmines.com
The M4 MacBook Air is tipped to show up before new iPads and the iPhone SE 4 in 2025 | usagoldmines...
Netflix lawsuit sues VMware over virtual machine patents | usagoldmines.com
5 iPhone Camera Features to Try Out This Holiday Season Hartley Charlton | usagoldmines.com
AI development service Builder.ai exposed over 1TB of data on three million users | usagoldmines.co...
Top WordPress plugins found to have some serious security flaws, so make sure you're protected | us...
AI impersonators will wreck online security in 2025. Here’s what to watch out for | usagoldmines.co...
The Full Nerd awards: Our favorite PC hardware of 2024 | usagoldmines.com
This powerful Samsung Galaxy Book4 360 is $450 off | usagoldmines.com
Apple's First Bezel-Free iPhone Unlikely to Be Ready for 2026 Launch Tim Hardwick | usagoldmines.com
Xerox buys Lexmark for $1.5 billion to build US printer giant capable of rivaling HP waynewilliams@o...
After two decades, GIMP 3.0 has arrived with high-resolution compatibility and extensive improvement...
TV Technica 2024: Our picks for the best of TV Jennifer Ouellette | usagoldmines.com
Sega CEO confirms the company won't be making more mini retro consoles, like a potential Dreamcast M...
More malicious Python packages are on the loose, experts warn | usagoldmines.com
Max confirms more monster mayhem after renewing the DC animated series Creature Commandos for season...
Netflix's Zero Day teaser is the first time I've seen Robert De Niro starring in a TV series | usag...
Track Santa's Journey From the North Pole Using Google's Santa Tracker Tim Hardwick | usagoldmines.c...
Windows users, this is one upgrade you won’t want to miss | usagoldmines.com
Meet the platform that’s making ChatGPT obsolete | usagoldmines.com
Russian hosting firm RUVDS takes server tech to the South Pole for high-speed data tests in extreme ...
AI educators are coming to this school – and it's part of a trend erichs211@gmail.com (Eric Hal Schw...
Going Full Nerd: My favorite Gordon Ung video is a masterclass in his talents | usagoldmines.com
Quordle today – my hints and answers for Tuesday, December 24 (game #1065) | usagoldmines.com
NYT Strands today — my hints, answers and spangram for Tuesday, December 24 (game #296) | usagoldmi...
NYT Connections today — my hints and answers for Tuesday, December 24 (game #562) | usagoldmines.co...
Santa tracker 2024 live: how to follow Santa with Google or Norad josephine.watson@futurenet.com (Jo...
The Roborock Curv Is the Most Adaptable Robot Vacuum I’ve Tried So Far Amanda Blum | usagoldmines.co...
The Bose Smart Soundbar 550 Is $300 Off Right Now Daniel Oropeza | usagoldmines.com
How I Use the Skylight Calendar to Manage My Life Amanda Blum | usagoldmines.com
This new rugged Panasonic 2-in-1 tablet with 13th-gen Intel processors, 5G connectivity, and a 12-in...
X CEO Linda Yaccarino is keynoting at CES 2025, but don't expect any answers lance.ulanoff@futurenet...
Gemini’s ‘Ask About This PDF’ Feature Appears Ready for Use Tim | usagoldmines.com
Five Examples of Trash That You Can Sell for Decent Money Jeff Somers | usagoldmines.com
How to Hide the Windows 11 Taskbar (Until You Need It) Justin Pot | usagoldmines.com
The Dreo Baristamaker Is My Favorite Frother for Professional-Grade Foamed Milk Allie Chanthorn Rein...
New MacBook Air Models With M4 Chip Expected to Launch 'Earlier' Than iPhone SE 4 and iPad 11 Joe Ro...
Elon Musk’s xAI supercomputer gets 150MW power boost despite concerns over grid impact and local pow...
Report: Samsung Sets Lower Expectations for Galaxy Z Fold 7, Z Flip 7 Amid Poor Foldable Sales Tim |...
The Easiest Way to Motivate Yourself to Clean Lindsey Ellefson | usagoldmines.com
My Favorite Amazon Deal of the Day: The Amazon Fire HD 8 Tablet Daniel Oropeza | usagoldmines.com
Here Are All the Carriers That Support RCS on iPhone Jake Peterson | usagoldmines.com
How to send a personal video message from Santa using AI erichs211@gmail.com (Eric Hal Schwartz) | u...
The quest to save the world’s largest CRT TV from destruction Kyle Orland | usagoldmines.com
Reminder: Donate to win swag in our annual Charity Drive sweepstakes Kyle Orland | usagoldmines.com
The Best Way to Defog Your Windshield Beth Skwarecki | usagoldmines.com
Apple Pay Donation Campaign for World AIDS Day Raised $3 Million Joe Rossignol | usagoldmines.com
A $100bn tech company you've probably never heard of is teaming up with the world's biggest memory m...
How movies and shows end up on your streaming services: studio rights explained | usagoldmines.com
Procrastinators, There’s Still Time to Get a Discounted Pixel Device ($250 Off) Tim | usagoldmines.c...
These Games Are Leaving PS Plus Next Month Jake Peterson | usagoldmines.com
My Must-Pack Items to Sleep Well While Traveling Lindsey Ellefson | usagoldmines.com
How to Make the iOS 18 Photos App Suck Less Juli Clover | usagoldmines.com
Flu surges in Louisiana as health department barred from promoting flu shots Beth Mole | usagoldmine...
$2,100 mechanical keyboard has 800 holes, NYC skyscraper looks Scharon Harding | usagoldmines.com
The befuddling world of USB-C charging, explained | usagoldmines.com
When to Hire a Financial Advisor (and When to Invest on Your Own) Meredith Dietz | usagoldmines.com
The Apple AirPods Max Just Dropped to a New Record Low Price Daniel Oropeza | usagoldmines.com
What to Expect From iOS 19: All the Rumors So Far Joe Rossignol | usagoldmines.com
US Government officials urged to lock down devices amid telecoms breach | usagoldmines.com
China’s plan to dominate legacy chips globally sparks US probe Ashley Belanger | usagoldmines.com
How the worlds of Dune: Prophecy got their distinctive looks Jennifer Ouellette | usagoldmines.com
Health care giant Ascension says 5.6 million patients affected in cyberattack Dan Goodin | usagoldmi...
Philips 5000-series smart deadbolt review: To open, just scan the hand | usagoldmines.com
All the Samsung Galaxy S25 Rumors We Know so Far (Including a Potential Launch Date) David Nield | u...
iPhone Sizes Change Next Year: What to Know Tim Hardwick | usagoldmines.com
Macs With M5 Chips Expected to Launch in This Order Joe Rossignol | usagoldmines.com
Sophos flags concerning firewall security flaws, users told to patch now | usagoldmines.com
Need a last-minute gift card? 20 compelling options for tech and beyond | usagoldmines.com
Samsung’s gigantic 8TB portable SSD just dropped to its best price | usagoldmines.com
Upgrade your PC to Windows 11 Pro for a killer 52% off | usagoldmines.com
You Can Search With 'Natural Language' on Apple TV and Music Now Justin Pot | usagoldmines.com
The Sonos Era 300 Is at Its Lowest Price Ever Pradershika Sharma | usagoldmines.com
A new Microsoft 365 phishing service has emerged, so be on your guard | usagoldmines.com
AMD RDNA 4 GPU rumors flood forth, including possible name change to RX 9070 – because bigger is bet...
How might NASA change under Trump? Here’s what is being discussed Eric Berger | usagoldmines.com
Honda and Nissan to merge, Honda will take the lead Jonathan M. Gitlin | usagoldmines.com
This budget-friendly 4K Asus gaming monitor just got even cheaper | usagoldmines.com
Rising to the TOPS: How will NPUs and Windows AI grow in 2025? | usagoldmines.com
Why I Love My Travel Drawer (and What I Put In It) Beth Skwarecki | usagoldmines.com
iPhone 18 Pro Rumored to Be More Like DSLR Camera With This Upgrade Joe Rossignol | usagoldmines.com

Leave a Reply