NOBELIUM is the group behind the SUNBURST backdoor, TEARDROP malware, GoldMax malware and other related components. Known for its undetectable attack techniques, the recent NOBELIUM malicious email campaign was detected in January 2021 by the Microsoft Threat Intelligence Center. After experimenting and developing delivery techniques, NOBELIUM targeted 3,000 individual accounts in 150 countries. The campaign peaked when the group used a legitimate messaging service called Constant Contact to deliver malicious payloads.
This is a permanent and active threat as of September 29, 2021. While it may look like a typical phishing email with questionable links, it is much more than that. The sophisticated techniques used by NOBELIUM to deliver malicious payloads require special attention.
Failure to comply with this attack can result in:
Compromised high-value user accounts.
Loss of sensitive information.
Well-established command and control capability over critical assets in the IT environment.
Violation of compliance policies such as GDPR, HIPAA, and PCI DSS.
We have prepared an eBook called How to Protect Microsoft 365 From Phishing attack by NOBELIUM hackers to help you deal with this threat. This e-book covers:
An introduction to NOBELIUM.
Email delivery techniques used by attackers.
Indicators of compromise for this attack.
Mitigation techniques that can be used.
Click here to grab your free copy of the eBook!
The post office [Free e-book] How to Protect Microsoft 365 Against Hacker Phishing Attack NOBELIUM appeared first on the ManageEngine blog.
*** This is a Syndicated Security Bloggers Network blog from ManageEngine Blog written by Anupriya. Read the original post at: https://blogs.manageengine.com/active-directory/m365managerplus/2021/10/06/free-e-book-how-to-protect-microsoft-365-from-the-nobelium- hackers-phishing-attack.html