Microsoft Data Entry Attack Takes Spoofing To The Next Level
While these attacks remain a legitimate concern for many organizations, a new, dynamic data entry attack uncovered by Microsoft’s Office 365 Threat Research Team brings an even greater challenge to employees and security teams alike. What is a dynamic data entry attack? In traditional data entry attacks, hackers copy elements from legitimate websites to create spoofed pages that replicate the same look, feel and experience as the real page. While this is extremely deceiving in most cases, many organizations implement custom, branded login pages for third-party services such as their email client, file-sharing service or CRM....