Microsoft today warned users of the dangers behind spear phishing attacks used by threat actors to target specific individuals. Threat actors would first run reconnaissance tasks in an effort to identify potential targets within an organization and a sender that would trick the potential victims into acting first and thinking later. Microsoft is also in the process of rolling out an enhanced notification system for phishing messages for admins in all Microsoft 365 environments and a new ‘Unverified Sender’ feature designed to make it simpler for users to detect phishing emails delivered to their Outlook clients’ inboxes.
Source: https://www.bleepingcomputer.com/news/security/microsoft-warns-of-spear-phishing-attacks-shares-tips-to-dodge-them/