Share this article

Improve this guide

Office 365 users targeted in SurveyMonkey phishing attack

2 min. read

Updated onOctober 4, 2023

updated onOctober 4, 2023

Share this article

Improve this guide

Read our disclosure page to find out how can you help Windows Report sustain the editorial teamRead more

Key notes

Asphishing attackscontinue to increase, it’s such a bad time for a Windows 10 user not to have an effectiveantimalwaresolution installed on their PC.

Worse still, spear phishing is the name of the game these days, in which case, the recipient of the malicious email or link is always a well-researched individual. It’s partly why such attacks are very difficult to stop.

Threat actors havetargeted Office 365 usersin these types ofcybercrimemultiple times before, and they continue to do so to date. Unsurprisingly, some of the latest victims/targets are employees participating in a fake SurveyMonkey survey.

SurveyMonkey phishing attack

SurveyMonkey phishing attack

The folks at Abnormal Security recentlyuncoveredattempts to steal O365 user credentials on the pretext of conducting surveys among employees.

In the campaign, the victim receives an email from a genuine SurveyMonkey site. But the message contains a hidden link, which upon clicking, redirects the victim to a Microsoft form submission page.

The user has to submit theirO365email and password to proceed. This way, the malicious actors steal the unsuspecting user’s Microsoft account security credentials.

The email is sent from a real SurveyMonkey domain (surveymonkeyuser.com), but with a different reply-to domain. That reply-to domain was registered only 1 month ago. The email simulates an automated notification with a link to open the “survey”. This link is an actual SurveyMonkey link that redirects to the main phishing page.

It appears that these spear phishing attacks have a high probability of success due to various factors, including the use of a trusted domain. Likewise, concealing the redirect link makes it a little difficult for the target to suspect anything.

Abnormal Security points out that up to 50,000 mailboxes may have received the SurveyMonkey phishing link.

What’s your take on the state of cybersecurity against the backdrop of rising cases of Office 365-related phishing attacks? Feel free to let us know via the comments section below.

[wl_navigator]

More about the topics:Cybersecurity

Don Sharpe

Tech Journalist

Don has been writing professionally for over 10 years now, but his passion for the written word started back in his elementary school days. His work has been published on Livebitcoinnews.com, Learnbonds.com, eHow, AskMen.com, Forexminute.com, The Writers Network and a host of other companies.

User forum

0 messages

Sort by:LatestOldestMost Votes

Comment*

Name*

Email*

Commenting as.Not you?

Save information for future comments

Comment

Δ

Don Sharpe

Tech Journalist

Don has been writing professionally for over 10 years now, simplifying the tech universe for the mases.