Legitimate SaaS Platforms Being Used to Host Phishing Attacks
Tags
maec-delivery-vectors: Watering Hole
attack-pattern: Data Models Credentials - T1589.001 Domains - T1583.001 Domains - T1584.001 Phishing - T1660 Phishing - T1566 Social Media - T1593.001 Social Media Accounts - T1585.001 Social Media Accounts - T1586.001 Software - T1592.002
Show in Graph
Common Information
Type Value
UUID fbddfac1-c5c0-4bf6-9ee0-c74e479fe58d
Fingerprint 1480884928101dcc
Analysis status DONE
Considered CTI value 0
Text language
Published Aug. 23, 2022, 1 p.m.
Added to db Sept. 11, 2022, 12:37 p.m.
Last updated Dec. 25, 2024, 4:35 a.m.
Headline Legitimate SaaS Platforms Being Used to Host Phishing Attacks
Title Legitimate SaaS Platforms Being Used to Host Phishing Attacks
Detected Hints/Tags/Attributes 31/2/1
Source URLs
Redirection Url
Details Source https://unit42.paloaltonetworks.com/platform-abuse-phishing/
URL Provider
Details Provider Source level domain
Details paloaltonetworks.com unit42.paloaltonetworks.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 256 Unit 42 https://unit42.paloaltonetworks.com/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 70 
login.microsoftonline.com