More advanced email and SMS phishing attacks have been launched by the Storm-0539 threat operation to achieve gift card fraud and theft against organizations in the retail industry amid the holiday shopping season, The Hacker News reports. After exfiltrating targets’ credentials and session tokens through adversary-in-the-middle phishing pages attached to malicious links sent in the phishing emails, Storm-0539 then includes its device for secondary authentication to evade multi-factor authentication and establish persistence before performing lateral movement and stealing sensitive data from cloud resources, said the Microsoft Threat Intelligence team in a series of posts on X, formerly Twitter.
Source: SC Magazine