Phishing emails have targeted 50,000 to 70,000 Microsoft Office 365 accounts since late October, Abnormal Security says. The phishing campaign relies heavily on social engineering techniques, such as accusing recipients of owing a tax debt. The emails include unique account and loan numbers as well as docket and warrant ID numbers to help make them appear legitimate. The fraudsters appear to always ask for a payment of $1,450, according to the security firm’s report. Experts say this type of spoofing, paired with well-written phishing emails, is now standard practice for many fraudsters.”]
Source: https://www.databreachtoday.com/irs-domain-spoofed-in-fraud-campaign-a-15344

