Microsoft and Cloudflare Zap RaccoonO365: Phishing-as-a-Service Busted!
Microsoft and Cloudflare have disrupted RaccoonO365, a Phishing-as-a-Service operation stealing thousands of Microsoft 365 credentials. The operation, offering subscription-based phishing kits, has affected organizations worldwide. Microsoft estimated the group received over $100,000 in cryptocurrency, and the leader, Joshua Ogundipe, has been identified for international law enforcement action.
Hot Take:
Looks like RaccoonO365 has been caught stealing more than just trash. Microsoft and Cloudflare have teamed up to sweep this Phishing-as-a-Service operation under the rug, but not before it made off with thousands of Microsoft 365 credentials. Clearly, the cybercriminals behind RaccoonO365 weren’t just phishing for compliments; they were casting a wide net for some serious loot! Now, thanks to a little internet sleuthing and a slip-up with a secret crypto wallet, these raccoons are headed for the internet’s version of the pound. Maybe next time, they’ll stick to raiding picnic baskets instead of digital vaults.
Key Points:
– Microsoft and Cloudflare have disrupted the RaccoonO365 operation, seizing 338 websites and accounts.
– The operation stole at least 5,000 Microsoft credentials from 94 countries since July 2024.
– RaccoonO365 used sophisticated phishing kits to appear legitimate, targeting sectors like healthcare.
– The service rented phishing kits via a Telegram channel, with rates up to $999 for a 90-day plan.
– A security oversight led to the identification of the operation’s leader, Joshua Ogundipe, in Nigeria.