The phishing campaign targeted Office 365 accounts in 62 countries, using business-related reports and the coronavirus pandemic as lures. The attackers gained access to victims emails, contact lists, sensitive documents and other valuable information, Microsoft said. A recent court order allowed the tech company to disable the domains associated with the attacks and disband the campaign. Microsoft did not say who is behind the attack, but said that that it wasn t a nation-state actor. The tech giant said that phishing scams and other email-based threats are becoming a bigger thorn in businesses sides.
Source: https://threatpost.com/microsoft-seizes-domains-office-365-phishing-scam/157261/