cxo voice
  • Home
  • Technology
    • AI
    • Cloud
    • Telecom
    • Data Center
    • BPM
    • Blockchain
  • Finance
    • Banking
  • Cyber Security
  • View Points
  • Leaders Talk
  • News
  • Press Release
    • Submit Press Release
No Result
View All Result
  • Home
  • Technology
    • AI
    • Cloud
    • Telecom
    • Data Center
    • BPM
    • Blockchain
  • Finance
    • Banking
  • Cyber Security
  • View Points
  • Leaders Talk
  • News
  • Press Release
    • Submit Press Release
No Result
View All Result
Leaders Talk and Latest Tech News | CXO VOICE
No Result
View All Result
Home News Cyber Security

Cybercriminals using ‘EvilProxy’ phishing kit to target exec: Report

IANS by IANS
August 14, 2023
bot markest

Cybercriminals are increasingly using a phishing-as-a-service (PhaaS) toolkit — EvilProxy — to pull off account takeover attacks aimed at high-ranking executives at major companies.

According to cybersecurity company Proofpoint, an ongoing hybrid campaign has leveraged the service to target thousands of Microsoft 365 user accounts, sending approximately 1,20,000 phishing emails to hundreds of targeted organisations across the globe between March and June 2023. 

Over the last six months, the researchers have observed a surge of over 100 per cent in successful cloud account takeover incidents impacting high-level executives at leading companies. 

During the phishing stage of the attack, attackers employed several noteworthy techniques, such as — brand impersonation, scan blocking, and a multi-step infection chain.

“Attackers use new advanced automation to accurately determine in real-time whether a phished user is a high-level profile, and immediately obtain access to the account, while ignoring less lucrative phished profiles,” the researchers said.

Moreover, the report said that more than 100 organisations were targeted globally, collectively representing 1.5 million employees. 

ADVERTISEMENT

Among the hundreds of compromised users, about 39 per cent were C-level executives of which 17 per cent were Chief Financial Officers (CFO), and 9 per cent were Presidents and CEOs. 

Attackers have also shown interest in lower-level management, focusing their efforts on personnel with access to financial assets or sensitive information. At least 35 per cent of all compromised users had additional account protections enabled.

Further, the report mentioned that the campaigns are seen as a response to the increased adoption of multi-factor authentication (MFA) in enterprises, evoking threat actors to grow their tactics to bypass new security layers by incorporating adversary-in-the-middle (AitM) phishing kits to siphon credentials, session cookies, and one-time passwords.

Cybersecurity firm Resecurity first reported on EvilProxy in September 2022, detailing its ability to compromise user accounts associated with Apple iCloud, Facebook, GoDaddy, GitHub, Google, Dropbox, Instagram, Microsoft, NPM, PyPI, RubyGems, Twitter, Yahoo, and Yandex, among others.

IANS

IANS

For any query, [email protected]

Related Posts

cybersecurity
Cyber Security

Cybersecurity & IT in 2025: AI Arms Race, Passwordless Future, and a $1 Billion Security Push

August 13, 2025
Quick Heal Tamil Nadu
Cyber Security

Quick Heal Launches Internet Security Essentials in Tamil Nadu to Enhance Online Safety with AI-Powered Protection

August 7, 2025
Cyber Security

Rubrik and Sophos Join Forces to Enhance Microsoft 365 Protection with New Backup and Recovery Service

August 6, 2025
Palo Alto CyberArk
Cyber Security

Palo Alto Networks to Acquire CyberArk for $25 Billion, Strengthening Identity Security and Cyber Defense

July 31, 2025
Cyber Security

Why Even One Unpatched Device Can Be a Catastrophic Risk for Startups and SMBs

July 25, 2025
Cyber Criminals
Cyber Security

How WormGPT Became ChatGPT’s Evil Twin

July 15, 2025
Quantum Computing Cybersecurity
Cyber Security

Why Quantum Computing is a Serious Cybersecurity Threat for Organizations

July 10, 2025
Tech Mahindra Security
Cyber Security

Tech Mahindra Launches Managed Services for Cisco Multicloud Defense to Enhance Cloud Security

June 24, 2025
Load More
ADVERTISEMENT

Latest Updates

Accenture NeuraFlash

Accenture Strengthens AI Portfolio with Acquisition of NeuraFlash, Enhancing Salesforce Solutions

by Deepa Sharma
25 seconds ago

HPE Saudi

HPE Launches New ‘Saudi Made’ Servers Powered by 5th Gen AMD EPYC Processors

by Arshi Khan
23 minutes ago

IBM and AMD

IBM and AMD Join Forces to Revolutionize Computing with Quantum Technology

by Arshi Khan
23 hours ago

Capgemini Cloud4C

Capgemini to Acquire Cloud4C, a well-established global managed cloud services provider

by Deepa Sharma
2 days ago

CT Scanners

Samsung Partners with NeuroLogica to Launch Innovative Mobile CT Scanners in India

by News Desk
2 days ago

TCS ICICI Lombard

TCS enables ICICI Lombard to deliver a Fully Automated Multi-Region Disaster Recovery on AWS Cloud 

by News Desk
3 days ago

Expert Views

Cyber Security

Why Even One Unpatched Device Can Be a Catastrophic Risk for Startups and SMBs

July 25, 2025
Cyber Criminals
Cyber Security

How WormGPT Became ChatGPT’s Evil Twin

July 15, 2025
Opinion

When AI Empowers Both Networks and Hackers: The New Battlefield for India’s Telecoms

May 20, 2025
Molly Sands AI
AI

AI RIP: 5 Things Knowledge Workers Will Say ‘Sayonara’ to in the Next Decade

March 8, 2025
multi cloud
Cloud

Multi-Cloud Made Simple: Strategies for Smart Business Management

March 5, 2025

Get Latest Update

Subscribe to our mailing list to receives newsletter direct to your inbox!

ADVERTISEMENT

Leaders Interviews

Steve Wilson, GenAI Cybersecurity LLMs
Cyber Security

How effective is GenAI in cybersecurity? The role of LLMs and AI in security solutions. [Interview with Steve Wilson]

-
Interview on Counterfeit products with Nikhil Narayan
Leaders Talk

Advancements in ML & AI made it possible to detect counterfeit products in real-time, says Nikhil Narayan

-
Newgenone bridges the gap between business users and IT teams with its low code capability: Varun Goswami
Leaders Talk

Newgenone bridges the gap between business users and IT teams with its low code capability: Varun Goswami

-
AI chatbots, Prasanna-Kumar
Leaders Talk

Can AI chatbots enhance customer experience and reduce the cost of serving customers?

-

Entrepreneur

Samsung Electronics appoints its first female president

Inspiring Women Entrepreneurs in India (2022)

Technology Adoption For Entrepreneurs

Volunteering management is the need of the Hour

CXOVoice.com is a leading online publication for CXOs, entrepreneurs, senior leaders, developers, and industry professionals. Our coverage spans key sectors, including IT, technology, banking, finance, cybersecurity, engineering, and automobiles.

Connect with us

Easy Links

  • Cryptocurrency
  • Event
  • Blockchain
  • Press Release
  • Resources & Downloads

Write Us

[email protected]
  • Home
  • About Us
  • Contact Us
  • Advertise
  • Privacy & Policy
  • Feedback

Copyright © 2025 CXOVoice - All Right Reserved

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In

Add New Playlist

Our Spring Sale Has Started

You can see how this popup was set up in our step-by-step guide: https://wppopupmaker.com/guides/auto-opening-announcement-popups/

No Result
View All Result
  • Home
  • Technology
    • AI
    • Cloud
    • Telecom
    • Data Center
    • BPM
    • Blockchain
  • Finance
    • Banking
  • Cyber Security
  • View Points
  • Leaders Talk
  • News
  • Press Release
    • Submit Press Release

Copyright © 2025 CXOVoice - All Right Reserved