Microsoft advertisers phished via malicious Google ads
NetmanageIT OpenCTI - opencti.netmanageit.com
SUMMARY :
Malicious actors are targeting Microsoft advertisers through fraudulent Google ads, aiming to steal login credentials for Microsoft's advertising platform. The campaign involves sophisticated techniques like cloaking, Cloudflare challenges, and redirection chains to evade detection. Phishing pages imitate the Microsoft Advertising platform, attempting to bypass 2-Step verification. The attack appears to be part of a larger, long-running campaign potentially affecting multiple advertising platforms. Users are advised to verify URLs carefully, use 2-Step verification wisely, monitor accounts regularly, and report suspicious ads. The article provides numerous indicators of compromise, including malicious domains associated with the campaign.
OPENCTI LABELS :
phishing,credential theft,google ads
Open in NetmanageIT OpenCTI Public Instance with below link!
Use public read only username and password on login page.
NOTE : Use Public READ only user credentials on login page banner.
Microsoft advertisers phished via malicious Google ads