Bunch of .XYZ #domains used in phishing attack against corporate accounts

A group of random character .XYZ domains was utilized in a phishing attack that lasted for several months. Last August, attackers initiated a phishing campaign with emails that masqueraded as Xerox scan notifications, prompting users to open a malicious HTML attachment. The attack successfully bypassed Microsoft Office 365 Advanced Threat Protection (ATP) filtering and stole […]

Copyright DomainGang

Credit: Original article published by Domain Gang.