<ul><li>A new two-step phishing campaign is exploiting Microsoft tools to deceive businesses.</li><li>Instead of directly delivering malware, attackers trick users into visiting fake Microsoft 365 login pages and steal their credentials.</li><li>The phishing scheme uses Microsoft Visio to spread malicious links hidden in files that appear to come from colleagues or clients.</li><li>To protect against these attacks, experts recommend investing in advanced threat detection solutions, staying updated on software and backups, educating teams about new threats, and implementing authentication mechanisms.</li></ul>

Two-Step Phishing Campaign Exploits Microsoft Tools

Discover more