OiVaVoii Campaign Is Targeting CEO Accounts With Malicious OAuth Apps
According to security researchers, an ongoing campaign 'OiVaVoii' is targeting CEOs' and general managers' accounts with malicious OAuth apps and custom phishing baits sent from hijacked Office 365 accounts. Microsoft is actively monitoring the situation and is blocking the dangerous apps. The takeover of the executives' accounts can cause the lateral movement of the infection through the company's network and the deployment of the ransomware. Read more...