A research carried out by a security firm has discovered a fraudulent help desk that is being circulated on the web through phishing email campaigns. And the highlight of this campaign is that it is running in the name of tech giant Microsoft and in disguise of a critical ransomware update that is essential for a business to avoid the same ransomware fate such as Colonial Pipeline.
Cybersecurity firm Inky was the first to spot such a fraudulent email campaign that is seen targeting only Microsoft 365 customers for now.
Going by the details available with our Cybersecurity Insiders, the emails are been sent from a newly created domain that mimics the features of the Microsoft domain, with a slight spelling mistake.
And when the victims fall prey to the email by clicking the link, the malicious email diverts them to a malicious website that then asks them to enter some critical details that might lead to more identity frauds in the future.
Inky’s spokesperson said that they are two domains that are indulging in such malevolent activity and were registered with NameCheap; as the said web hosting provider accepts Bitcoins to offer services.
Note- Microsoft never sends any emails to its customers asking them to update their system with the latest fix available as a link in an email. To those uninitiated, such updates are often done in an automated way by the tech giant without much of the admin or user indulgence. So, never click on such baited emails as they can put your device and your enterprise network at extreme risk.