2025-01-31 01:05:25 Pacfic
FlowerStorm platform targets Microsoft 365 accounts - 8d
A new phishing-as-a-service platform named "FlowerStorm" is rapidly gaining traction, filling the void left by the recent shutdown of the Rockstar2FA cybercrime service. This platform is specifically designed to target Microsoft 365 accounts, allowing threat actors to easily create and deploy phishing campaigns. FlowerStorm's emergence indicates a rise in sophisticated, automated attacks aimed at Microsoft users.
These campaigns, some of which have recently targeted 20,000 users across the UK and Europe, often use tactics such as Docusign lures to attempt Azure account takeovers. The platform enables attackers to steal credentials and maintain persistent access to the cloud environment, potentially leading to data theft and extortion. This highlights the growing sophistication of cybercriminals and the ease with which they can launch complex phishing schemes.
ImgSrc: www.bleepstatic.com
References:
- @BleepingComputer - A new Microsoft 365 phishing-as-a-service platform called 'FlowerStorm' is growing in popularity, filling the void left behind by the sudden shutdown of the Rockstar2FA cybercrime service. - 9d
- Over Security - Cybersecurity news aggregator - A new Microsoft 365 phishing-as-a-service platform called "FlowerStorm" is growing in popularity, filling the void left behind by the sudden shutdown of the Rockstar2FA cybercrime service. - 8d
- DataBreaches.Net - New FlowerStorm Microsoft phishing service fills void left by Rockstar2FA - 6d
- Malware Analysis, News and Indicators - Latest topics - New FlowerStorm Microsoft phishing service fills void left by Rockstar2FA - 6d
- Threat Research ? Sophos News - Major Phishing-as-a-Service Platform Disrupted, Successor Platform Emerges with Similar Infrastructure - 6d
- The Hacker News - Rockstar2FA Collapse Fuels Expansion of FlowerStorm Phishing-as-a-Service - 6d
- SCM feed for Security Strategy, Plan, Budget - Novel FlowerStorm PhaaS gains traction after Rockstar2FA disruption - 6d
- Malware Analysis, News and Indicators - Latest topics - Novel FlowerStorm PhaaS gains traction after Rockstar2FA disruption - 6d
- news.sophos.com - #FlowerStorm #phishing platform emerges after #Rockstar2FA disruption. - 6d
- databreaches.net - New FlowerStorm Microsoft phishing service fills void left by Rockstar2FA - 5d
- Cybersecurity News - FlowerStorm Seizes Opportunity as Rockstar2FA Crumbles - 5d
Classification:
- HashTags: Phishing Microsoft365 Cybersecurity
- Company: Microsoft
- Target: Microsoft 365 users
- Product: Microsoft 365
- Feature: phishing
- Type: Phishing
- Severity: Medium