The hackers referred to by Microsoft as Phosphorus, also known as APT 35, Charming Kitten and Ajax Security Team, used phishing attacks to launch sites pretending to belong to companies such as Microsoft and Yahoo. These attacks convince users to click on a link Contains malware or makes the user think their accounts are at risk, and then asks them to re-enter their login data, which the group then steals.
After controlling these sites, Microsoft said it redirected traffic to its own security repository to learn more about the group's activities. This information will be used in Microsoft's security products to better protect customers.
The company also said it has worked closely with other technology companies, especially Yahoo, in this case. Facebook Inc. reported yesterday that it removed hundreds of pages, collections and accounts linked to Iran by pretending to be political groups and media organizations in an attempt to influence political thinking in countries around the world.
The company also said it has worked closely with other technology companies, especially Yahoo, in this case. Facebook Inc. reported yesterday that it removed hundreds of pages, collections and accounts linked to Iran by pretending to be political groups and media organizations in an attempt to influence political thinking in countries around the world.
