Threat Watch

Iranian group Phosphorus Targeting High Profile Conferences, Warns Microsoft

Originally reported by Zdnet, Microsoft’s Threat Intelligence Information Center has released a warning detailing an ongoing credential harvesting attack against more than 100 high profile individuals attending the upcoming Munich Security Conference, as well as the Think 20 Summit. The attacks had a high level of sophistication, employing the use of convincing lures purporting to originate from conference organizers. Microsoft has stated that the conference attendees have been warned about these ongoing attacks.

ANALYST NOTES

As this campaign was carried out entirely over email, Binary Defense recommends using caution when entering credentials into documents or links received over email. Additionally, Binary Defense recommends for the use of a 24/7 SOC monitoring solution like Binary Defense’s Security Operations Task Force to better detect these threats when they may occur.

https://www.zdnet.com/article/microsoft-these-iranian-attackers-are-targeting-high-profile-conference-attendees/