DemoBlade

Beta news logo

News

Bleeping computer logo

Raconteur logo

They are an everyday part of business, but invoice emails are the latest vehicle for tricky fraudsters and are getting increasingly hard to detect. Working from home during the pandemic, the finance department has been rich pickings for so-called business email compromise, or BEC, a type of fraud that costs billions.

Invoice emails are the new Trojan horse

Employees using Microsoft Office 365 are targeted in a phishing campaign that makes use of bait messages camouflaged as automated SharePoint notifications to steal their accounts.

Office 365 phishing baits employees with fake SharePoint alerts

Threat post logo

Health it security logo

Researchers observed an increase in business email compromise phishing campaigns able to bypass MFA, while Trend Micro found an uptick in BEC scams targeting executive Office 365 accounts.

BEC Phishing Campaigns Bypass MFA, Target Office 365 Executive Accounts

While brute-forcing and password spraying techniques are the most common way to mount account takeovers, more methodical cybercriminals are able to gain access to accounts even with more secure MFA protocols in place.

Attackers Hone in on MFA Bypass Options for Account Takeovers

Homepage

Breadcrumbs

Abnormal Security provides advanced email security to prevent credential phishing, business email compromise, account takeover, and more.

Abnormal Security

Researchers at Abnormal Security have detected an increase in business email compromise attacks that successfully compromise email accounts despite the use of multi-factor authentication (MFA) and Conditional Access.

Attackers bypass multi-factor authentication to hijack email accounts

Researchers at Abnormal Security have detected an increase in business email compromise attacks that successfully compromise email accounts despite the…

description

email, compromise, business, attacks, successfully, accounts, security, detected, increase, despite, multi-factor, authentication, abnormal, conditional, researchers

keywords

https://optimise2.assets-servd.host/gifted-zorilla/production/images/press/beta-news-logo.png?w=1200&h=630&q=82&auto=format&fit=crop&dm=1632180630&s=4a93d789ba09c7dcdaf87cf3839f8ed9

https://abnormalsecurity.com/about/news/attackers-bypass-multi-factor-authentication-to-hijack-email-accounts

referrer

robots

twitter:card

twitter:creator

twitter:description

https://optimise2.assets-servd.host/gifted-zorilla/production/images/press/beta-news-logo.png?w=800&h=418&q=82&auto=format&fit=crop&dm=1632180630&s=9eaff80a5216c62f11d927a4a57ab7df

twitter:image

twitter:image:alt

twitter:image:height

twitter:image:width

twitter:site

twitter:title

{"title":{"title":"Attackers bypass multi-factor authentication to hijack… | Abnormal"}}

Schedule a Demo

Preventing Criminals From Using AI for Cybersecurity Attacks

CNBC Disruptor 50: Abnormal Security

Generative AI Could Revolutionize Email—for Hackers

Ones to Watch in Tech

Email Subscribe

<p>Subscribe to our newsletter to receive updates on the latest attacks and new trends in the email threat landscape.</p>

Newsroom

Announcing a New Abnormal Podcast! | Listen to SOC Unlocked Podcast

<p>Announcing a New Abnormal Podcast!</p>

vs Mimecast

vs Avanan

Secondary CTA

Whether FormComplete is utilized on a form

FormComplete

CTA Display

What text is displayed on the primary CTA (see sheet for details on copy)

Primary CTA Text

Form Columns

chakra-ui-ChakraProvider

Button

Footer

FramerWrapper

Container

Screen

PrimaryCtaText

FormColumns

CtaDisplay

VsMimecast

SecondaryCta

VsAvanan

Abnormal Solutions

react-awesome-reveal

lottie-react

plasmic-nav

react-scroll-parallax-global

plasmic-embed-css

Abnormal Pages

loading-boundary

plasmic-query

plasmic-basic-components

Abnormal Legal

Abnormal Why Abnormal

Abnormal Landing Pages

plasmic-rich-components

Abnormal Partners

Abnormal Products

Abnormal Design System

Abnormal Marketing

antd5 hostless

react-slick

react-quill

B MKT515p New AI Human Behavior Platform Whitepaper

White Papers

Discover how Abnormal's AI-powered solution protects organizations from their biggest risk—humans.

How to Protect Against the Human Vulnerability: Using AI to Prevent Novel Socially-Engineered Attacks

Abnormal Platform

B SANS Report

Analyst Research

Learn how modern SOC teams address evolving threats, challenges, and technology integrations.

SANS 2024 SOC Survey: Facing Top Challenges in Security Operations

B 1500x1500 Cloud ATO Report

Discover how security leaders are protecting their organizations against account takeover with insights from our survey of 300 cybersecurity stakeholders.

2024 State of Cloud Account Takeover Attacks

Account Takeover

B Attack Quiz

Tools

Test your ability to distinguish malicious emails from safe ones in this interactive quiz.

Quiz: Attack or Not?

Attackers bypass multi-factor authentication to hijack email accounts

Get AI Protection for Your Human Interactions