As businesses become more skilled at recognizing and blocking phishing attempts, hackers continue to refine their tactics, finding new ways to bypass security measures. A recent phishing scheme takes a multi-step approach, leveraging Microsoft tools to deceive users and gain access to sensitive information.

Evolving Tactics in Phishing Attacks

With email security software and employee awareness training in place, many organizations can filter out suspicious messages before they ever reach inboxes. In response, cybercriminals are adjusting their strategies. Instead of directly delivering harmful content, they redirect victims to trusted platforms, making their schemes harder to detect.

A common trick involves posing as HR or IT staff and luring users to fake Microsoft 365 login pages. Once there, attackers harvest login credentials, deploy malware, or launch additional attacks. However, a newer version of this strategy now takes advantage of Microsoft SharePoint and Visio, embedding malicious links inside seemingly legitimate files.

Using compromised email accounts, attackers send messages that appear to be from colleagues or clients. These emails often contain urgent requests, pressuring recipients to click a link that leads to an infected SharePoint file. By distributing malware through Microsoft Visio diagrams, cybercriminals increase the chances of bypassing security filters.

To further evade detection, hackers add an extra step that makes it harder for automated tools to block the attack. Victims are instructed to hold the CTRL key while clicking on a button within the Visio file, a simple action that effectively circumvents many security protections.

Strengthening Defenses Against Advanced Phishing Schemes

When successful, this type of attack not only compromises login credentials but also installs malware, opening the door for further breaches. Since these phishing campaigns originate from hijacked email accounts, reinforcing security measures is essential to preventing unauthorized access.

Experts recommend adopting a multi-layered security strategy to combat these evolving threats. Investing in advanced detection tools can help identify suspicious links and attachments before they reach employees. Keeping software updated and performing regular backups ensures systems remain protected against vulnerabilities. Educating staff on recognizing phishing attempts and understanding the risks associated with clicking links in emails is also crucial.

Implementing strong authentication methods, such as multi-factor authentication, can limit the damage if credentials are stolen. Staying ahead of emerging threats requires constant vigilance, but proactive security measures can significantly reduce the risk of falling victim to these deceptive tactics.