Check Point Research has identified a new phishing campaign exploiting Microsoft’s ‘Dynamics 365 Customer Voice,’ a customer relationship management software product used to record customer calls, monitor customer reviews, share surveys, and track feedback.
Microsoft 365 is used by over 2 million organisations worldwide. At least 500,000 organisations use Dynamics 365 Customer Voice, including 97 percent of Fortune 500 companies. According to the cybersecurity platform, cyber criminals send business files and invoices from compromised accounts and include fake Dynamics 365 Customer Voice links. The email configuration looks legitimate and easily tricks email recipients into taking the bait.
As part of the campaign, these criminals have deployed over 3,370 emails, with content reaching employees of over 350 organisations, the majority of which are American. More than a million different mailboxes have been targeted.
Affected entities include well-established community betterment groups, colleges and universities, news outlets, a prominent health information group, and organisations that promote arts and culture, among others. Check Point noted that employees should be on the lookout for suspicious emails and confirm email’s origination points, especially those claiming to be from Microsoft services.
“Businesses should ensure that they have the most advanced email security possible. Think AI-powered, cloud-delivered, and multi-layered with inline, integrated threat protection mechanisms,” it added.
