Kevin Beaumont on Nostr: My favourite part of this saga is aside from the MS breach notification emails not ...
My favourite part of this saga is aside from the MS breach notification emails not having valid DKIM signing nor SPF, the emails are getting flagged as phishing and submitted to sandboxes.
Each tenant has a unique URL, and I’m tracking over 500 so far - so there’s at least 500 victim orgs.
Published at
2024-07-08 22:11:21Event JSON
{
"id": "1c16642bf56b54862a16508426cdb793829722a5e2c97c8da1b4546a6bae3a9d",
"pubkey": "f6870afcde4480ec8508f50304859e14a51309ff24ab3f0f862c52bdc4af8747",
"created_at": 1720476681,
"kind": 1,
"tags": [
[
"e",
"e503f1f2bfb55906e2f14672eebcf6222c10a36c254a1c137ac5e9b2c070657f",
"wss://relay.mostr.pub",
"reply"
],
[
"proxy",
"https://cyberplace.social/users/GossiTheDog/statuses/112753159775276810",
"activitypub"
]
],
"content": "My favourite part of this saga is aside from the MS breach notification emails not having valid DKIM signing nor SPF, the emails are getting flagged as phishing and submitted to sandboxes. \n\nEach tenant has a unique URL, and I’m tracking over 500 so far - so there’s at least 500 victim orgs.\n\nhttps://cyberplace.social/system/media_attachments/files/112/753/159/361/918/674/original/7d033f402c5141f1.png",
"sig": "8038f85941a409e11d5a1b24345376131bb4dcccefdad7d894bb4704cf91ef8ce934ec22135174c3aa5f83f94792c6591c5f7d9f9ce1dc7583e242bd0efcf43c"
}
