From Email Spam to Ransomware: Hunting Social Engineering in Microsoft Teams
Tags
| attack-pattern: | Domains - T1583.001 Domains - T1584.001 |
Common Information
| Type | Value |
|---|---|
| UUID | 18db1cad-3c27-41fb-83b8-5777118ac9eb |
| Fingerprint | 241aa8123886e85e |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Nov. 28, 2024, 11:43 a.m. |
| Added to db | Nov. 28, 2024, 1:17 p.m. |
| Last updated | Dec. 19, 2024, 5:05 a.m. |
| Headline | From Email Spam to Ransomware: Hunting Social Engineering in Microsoft Teams |
| Title | From Email Spam to Ransomware: Hunting Social Engineering in Microsoft Teams |
| Detected Hints/Tags/Attributes | 21/1/8 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 167 | ✔ | Cybersecurity on Medium | https://medium.com/feed/tag/cybersecurity | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 2 | malwareremovalassistance.onmicrosoft.com |
|
| Details | Domain | 39 | onmicrosoft.com |
|
| Details | Domain | 1 | yourorganization.onmicrosoft.com |
|
| Details | Domain | 14 | www.reliaquest.com |
|
| Details | Url | 1 | https://www.microsoft.com/en-us/security/blog/2024/05/15/threat-actors-misusing-quick-assist-in-social-engineering-attacks-leading-to-ransomware |
|
| Details | Url | 2 | https://www.rapid7.com/blog/post/2024/05/10/ongoing-social-engineering-campaign-linked-to-black-basta-ransomware-operators |
|
| Details | Url | 1 | https://www.reliaquest.com/blog/black-basta-social-engineering-technique-microsoft-teams |
|
| Details | Url | 1 | https://www.linkedin.com/pulse/threat-hunting-black-basta-qr-phising-microsoft-teams-sai-molige-i78rc/?trackingid=tzf3 |