"RaccoonO365, which has been around for more than a year, has been rented to cybercriminals for between $355 (30-day plan) and $999 (90-day plan) under a phishing-as-a-service (PhaaS) model. Microsoft estimates that the operation earned the criminal enterprise at least $100,000 in cryptocurrency. The phishing service has been advertised on a Telegram channel with over 850 members, and Microsoft believes RaccoonO365 had at least 100-200 subscribers."
"Microsoft teamed up with healthcare cybersecurity non-profit Health-ISAC to file a lawsuit against RaccoonO365 operators. The partnership with Health-ISAC is explained by the fact that RaccoonO365 has been used to target at least 20 healthcare organizations in the US, which Microsoft says "puts public safety at risk" due to RaccoonO365 phishing emails often leading to malware and ransomware, which can have a severe impact on hospitals."
Microsoft and Cloudflare acted to disrupt RaccoonO365, a phishing-as-a-service that enabled criminals to harvest Microsoft 365 usernames and passwords. The service rented access for $355 to $999 and reportedly generated at least $100,000 in cryptocurrency. RaccoonO365 was promoted on a Telegram channel with over 850 members and likely had 100–200 subscribers. The platform produced realistic fake emails, attachments with links or QR codes, and phishing websites that required no advanced skills. At least 5,000 credentials across 94 countries were stolen since July 2024. Microsoft and Health-ISAC filed a lawsuit, and Microsoft’s DCU seized over 330 domains to disrupt the infrastructure.
Read at SecurityWeek
Unable to calculate read time
Collection
[
|
...
]