Evolved phishing: Device registration trick adds to phishers’ toolbox for victims without MFA - Microsoft Security Blog
Tags
cmtmf-attack-pattern: Compromise Accounts
country: Australia Indonesia Thailand Singapore
maec-delivery-vectors: Watering Hole
attack-pattern: Data Compromise Accounts - T1586 Credentials - T1589.001 Device Registration - T1098.005 Domains - T1583.001 Domains - T1584.001 Multi-Factor Authentication - T1556.006 Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Sharepoint - T1213.002 Powershell - T1086
Show in Graph
Common Information
Type Value
UUID e074f541-7970-4125-8ee6-13b1e851ae6a
Fingerprint b4210b190b01ffe8
Analysis status DONE
Considered CTI value 0
Text language
Published Jan. 26, 2022, 9 a.m.
Added to db Sept. 26, 2022, 9:31 a.m.
Last updated Oct. 9, 2024, 4:01 p.m.
Headline Evolved phishing: Device registration trick adds to phishers’ toolbox for victims without MFA
Title Evolved phishing: Device registration trick adds to phishers’ toolbox for victims without MFA - Microsoft Security Blog
Detected Hints/Tags/Attributes 61/4/5
Source URLs
Redirection Url
Details Source https://www.microsoft.com/security/blog/2022/01/26/evolved-phishing-device-registration-trick-adds-to-phishers-toolbox-for-victims-without-mfa
Details Source https://www.microsoft.com/security/blog/2022/01/26/evolved-phishing-device-registration-trick-adds-to-phishers-toolbox-for-victims-without-mfa/
URL Provider
Details Provider Source level domain
Details microsoft.com www.microsoft.com
Attributes
Details Type #Events CTI Value
Details Domain 1 
newdoc-lnpye.ondigitalocean.app
Details Domain 3 
raweventdata.target
Details File 4 
payment.pdf
Details File 2 
raweventdata.obj
Details File 4 
raweventdata.tar