We've been in cybersecurity for years, but the latest phishing attacks are getting really good. They've been to social selling school, sending multiple emails with similar messages, each one more urgent, the latest one I (David Nevin) received this week threatened that Microsoft will shut down my email account.
If I was a busy corporate type trying to clear my inbox, it would be easy to click the link to "Resolve the issues with my email". Good thing they aren't that good at spoofing Outlook accounts to send mail from, and by looking at the email header, it's easy to see that the true sender is Gmo Cloud K.k. from Ota Japan using IP 126.96.36.199. Here is Office-365 Spoof:
They did enough research to determine I'm an Outlook-365 User, but their spelling still needs work, it's Microsoft Security Team, not Microsft Security Team.
Share your best or latest phishing attack, maybe it'll stop somebody from clicking on the link that's really a CSRF or XSS payload attack. If you need help determining who is sending the emails so your IT can block future attacks, we'll do that for Free. Contact us at firstname.lastname@example.org
David NevinVP Business Development415-827-5100