Microsoft 365 Defender research team says it has “disrupted a large-scale business email compromise infrastructure hosted in multiple web services” The attack started with phishing emails, which contained a voice message lure and an HTML attachment. The attackers then added forwarding rules and gained access to victims’ emails about financial transactions, the researchers say. Microsoft recommends Office 365 users deploy advanced pre-breach protection tools with capabilities such as a multilayered email filtering stack with edge protection, sender intelligence, content filtering and post-delivery protection.”]
Source: https://www.inforisktoday.com/behind-scenes-business-email-compromise-attack-a-16887

