Tiny Font Size Fools Email Filters in BEC Phishing

A new business email compromise BEC campaign targeting Microsoft 365 users is using a range of sophisticated obfuscation tactics within phishing emails that can fool natural language processing filters and are undetectable to end users. Researchers at Avanan, a CheckPoint company, first discovere...

Office 365 in the 0-day vulnerability baseStriker appear in the wild examples of the use-vulnerability warning-the black bar safety net

5 October 1, Avanan the researchers found that Office 365 appears in a named baseStriker of 0-day vulnerabilities. An attacker can exploit this vulnerability to send malicious mail, bypassing the Office 365 account security mechanisms. ! baseStriker vulnerability of the code to use the less...

aus01.safelinks.protection.outlook.com Open Redirect vulnerability

Vulnerable URL: https://aus01.safelinks.protection.outlook.com/?url=https://www.xssposed.org/ Details: Description| Value ---|--- Patched:| Yes, at 29.01.2017 Latest check for patch:| 29.01.2017 15:37 GMT Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank|...

apac01.safelinks.protection.outlook.com Open Redirect vulnerability

Vulnerable URL: https://apac01.safelinks.protection.outlook.com/?url=https://www.xssposed.org/ Details: Description| Value ---|--- Patched:| Yes, at 29.01.2017 Latest check for patch:| 29.01.2017 15:37 GMT Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank|...

emea01.safelinks.protection.outlook.com Open Redirect vulnerability

Vulnerable URL: https://emea01.safelinks.protection.outlook.com/?url=https://www.xssposed.org/ Details: Description| Value ---|--- Patched:| Yes, at 29.01.2017 Latest check for patch:| 29.01.2017 15:37 GMT Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank|...

eur01.safelinks.protection.outlook.com Open Redirect vulnerability

Vulnerable URL: https://eur01.safelinks.protection.outlook.com/?url=https://www.xssposed.org/ Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated Google Pagerank| 0 VIP website...

na01.safelinks.protection.outlook.com Open Redirect vulnerability

Vulnerable URL: https://na01.safelinks.protection.outlook.com/?url=https://www.xssposed.org/ Details: Description| Value ---|--- Patched:| Yes, at 28.01.2017 Latest check for patch:| 28.01.2017 22:40 GMT Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank|...