Thursday, 24 April 2025
26.1 C
Singapore
29 C
Thailand
19 C
Indonesia
28.4 C
Philippines

Microsoft 365 users targeted by an advanced new phishing scam

A new phishing scam, Mamba 2FA, targets Microsoft 365 accounts, bypassing multi-factor authentication with advanced features at a low cost of US$250.

A dangerous new phishing scam has emerged, primarily targeting Microsoft 365 users. Known as Mamba 2FA, this phishing-as-a-service (PhaaS) platform has caught the attention of cybercriminals due to its advanced features, security evasion techniques, and relatively low cost.

According to reports from cybersecurity researchers at Sekoia, Mamba 2FA has been around since November 2023. The service costs US$250 per month, making it affordable for criminals looking to exploit both personal and corporate Microsoft 365 accounts.

How criminals are using Mamba 2FA

The Mamba 2FA platform offers a range of features that make it particularly effective. For example, it enables attackers to create convincing fake Microsoft 365 login pages, tricking users into entering their credentials. Even more worryingly, these counterfeit pages can capture sensitive information like authentication tokens and multi-factor authentication (MFA) codes. This makes Mamba 2FA capable of bypassing one of the most common security measures companies use to protect their accounts.

In recent months, Mamba 2FA has undergone several upgrades. One of its most alarming improvements is its ability to hide the IP addresses of relay servers in authentication logs. This makes it more difficult for businesses to detect unusual login attempts. Additionally, Mamba 2FA rotates the domain names used in phishing URLs to avoid being blacklisted by security systems.

Cybercriminals who use the service can collect a wide range of security information from victims, which they can then use to take control of their accounts. Sekoia’s researchers observed multiple instances of Mamba 2FA in action, highlighting the growing popularity of this platform among hackers.

Phishing remains a top threat

Phishing continues to be one of the most widespread and effective methods cybercriminals use to steal sensitive data or deploy malware. Its low cost and the ease with which email addresses can be obtained make phishing a persistent threat to individuals and businesses.

To combat this, many organisations now require their employees to use multi-factor authentication, hoping it will provide an additional layer of security and prevent attackers from using stolen passwords. Unfortunately, criminals have adapted. The rise of adversary-in-the-middle (AiTM) techniques like those used in Mamba 2FA means that even MFA codes can now be intercepted by hackers.

One of the tricks used by Mamba 2FA is to allow the victim to log into the legitimate service while their data is being stolen. This tactic increases the credibility of the phishing attempt and reduces the chances that users will realise something is wrong, leaving them even more vulnerable.

Staying safe in a phishing-filled world

The growing sophistication of phishing scams like Mamba 2FA highlights the importance of remaining vigilant online. While multi-factor authentication remains an important tool in the fight against cybercrime, it’s no longer enough. Businesses and individuals alike must be aware of the latest phishing tactics and ensure comprehensive security measures are in place.

Regular employee training, advanced email filtering systems, and monitoring for unusual login attempts are some steps that can help reduce the risk of falling victim to these attacks. The battle against phishing is far from over, and as criminals develop new tools, cybersecurity efforts must continue to evolve.

Hot this week

ChatGPT trend raises privacy concerns with photo-based location searches

People use ChatGPT to identify photo locations, raising privacy concerns as new AI tools make “reverse location search” easier than ever.

Netflix raises subscription prices in Singapore again

Netflix again raises subscription prices in Singapore, with new rates for all plans and extra member slots.

OpenAI may be creating a new social media platform with AI-generated images

OpenAI may launch a social platform with ChatGPT-powered image feeds, marking a new step into AI-driven social networking.

NVIDIA uses AI to address climate, wildlife and disaster risks

NVIDIA’s AI tools support climate action, wildlife monitoring, and disaster risk mitigation, with uses spanning sea, land, sky and space.

GenAI investment could unlock ‘co-working’ future in financial services, says Moody’s

Moody’s sees GenAI transforming finance with AI co-workers, helping firms grow, automate decisions, and lower access barriers.

POCO launches entry-level C71 smartphone in Singapore with premium features

POCO launches the budget-friendly C71 smartphone in Singapore, offering premium design, enhanced cameras, and smooth performance at S$109.

NVIDIA uses AI to address climate, wildlife and disaster risks

NVIDIA’s AI tools support climate action, wildlife monitoring, and disaster risk mitigation, with uses spanning sea, land, sky and space.

Netflix raises subscription prices in Singapore again

Netflix again raises subscription prices in Singapore, with new rates for all plans and extra member slots.

GameMax unveils Blade Concept ATX case with bold design and powerful features

GameMax launches the Blade Concept ATX case, which features a striking blade design, RGB lighting, and support for high-end liquid-cooled PC builds.

Related Articles

Popular Categories