Cyberattacks

Hackers Use Email Security Services to Steal Microsoft 365 Passwords

Cybercriminals exploit trusted email security services to launch phishing attacks targeting Microsoft 365 users, using multi-layered redirects to steal credentials. Learn how these attacks work and why they're so effective.

By Content Team

Jul 31, 2025

ON THIS PAGE

Share

---

ON THIS PAGE

Want more insights like this?

Subscribe to our newsletter to get the latest software protection strategies delivered to your inbox.

By submitting your email, you consent to Codekeeper contacting you and agree to our privacy policy.

Cybercriminals are exploiting legitimate email security services from Proofpoint and Intermedia to launch sophisticated phishing attacks targeting Microsoft 365 users. The hackers use these trusted platforms' link-wrapping features to create multi-layered redirects that bypass security filters and appear legitimate to victims.

When users click these disguised links, they're taken through several redirects before landing on fake Microsoft login pages designed to steal their credentials. This technique is particularly dangerous because it leverages trusted security brands, making the malicious emails harder to detect and more likely to fool recipients.

Source: The Hacker News

Share this article

Have questions about protecting your software?

Our escrow experts are standing by to help.

Book a free demo

YOU MAY ALSO LIKE

Ingram Micro Ransomware Attack Exposes 42,000 People's Personal Data

Jan 19, 2026

SAP Releases Critical Security Patches for January 2026 - Immediate Action Required

Jan 13, 2026

Jaguar Land Rover Sales Plummet 43% After Cyber Attack and US Tariffs

Jan 9, 2026

AI Powers Cybercrime's New 'Fifth Wave' with $5 Deepfakes and Automated Phishing

Jan 20, 2026