image credit: Adobe Stock

Microsoft Uncovers Banking AitM Phishing and BEC Attacks Targeting Financial Giants

June 9, 2023

Banking and financial services organizations are the targets of a new multi-stage adversary-in-the-middle (AitM) phishing and business email compromise (BEC) attack, Microsoft has revealed.

“The attack originated from a compromised trusted vendor and transitioned into a series of AiTM attacks and follow-on BEC activity spanning multiple organizations,” the tech giant disclosed in a Thursday report.

Microsoft, which is tracking the cluster under its emerging moniker Storm-1167, called out the group’s use of indirect proxy to pull off the attack.

Read More on The Hacker News