Microsoft webmail targeted by spear phishing attacks
Security firm says it is currently seeing 30,000 phishing attacks against business users using Microsoft Outlook Web Access (OWA) every hour.

Thousands of business people using Microsoft Outlook Web Access are being targeted by spear phishing attacks.
Security firm Websense revealed that victims were being targeted by an email that looks like it is from their company's technical support, telling them they needed to click through to a site to apply mailbox setting changed due to a security upgrade'.
This is actually a phishing site, which is mocked up to look just like it is part of Microsoft's online email system, which lets users check Outlook accounts from the internet. Websense said it was seeing 30,000 of these messages per hour, and that they had low antivirus detection rates.
"It is spear phishing, but on a grand scale that we've never seen before," said Didier Guibal, vice president of worldwide sales for Websense, stating that only business users were targeted with this attack.
"Obviously they have profiled different companies and done their homework. Spear phishing is becoming very common, but to this level and to many different companies at the same time is very new."
Websense wouldn't name the companies involved, as it first needed to let them know they had been targeted.
Once the user reaches the phishing site they are required to fill in their security profile that allows a criminal to access their email account.
Sign up today and you will receive a free copy of our Future Focus 2025 report - the leading guidance on AI, cybersecurity and other IT challenges as per 700+ senior executives
Additionally, Guibal revealed that if a user downloaded a file from the fake Microsoft Outlook Web Access page, their system would become part of a botnet called Zbot.
Guibal said: "This is now a [compromised] workstation within the network, behind the firewall with full access. Bots would be able to roam throughout the network."
-
AI coding tools are booming – and developers in this one country are by far the most frequent users
News AI coding tools are soaring in popularity worldwide, but developers in one particular country are among the most frequent users.
-
Cisco warns of critical flaw in Unified Communications Manager – so you better patch now
News While the bug doesn't appear to have been exploited in the wild, Cisco customers are advised to move fast to apply a patch