All news with #raccoono365 tag

Thu, September 18, 2025

Microsoft Takedown Disrupts RaccoonO365 Phishing Service

#Microsoft #Law Enforcement Action #Phishing-as-a-Service #RaccoonO365 #MFA #Malware #Ransomware

🛡️ Microsoft's Digital Crimes Unit has seized 338 domains to dismantle the Phishing‑as‑a‑Service platform RaccoonO365, which enabled low‑skilled actors to deploy convincing Microsoft login pages. The DCU reports the service compromised more than 5,000 accounts across 94 countries since July 2024 and could bypass MFA to maintain persistent access. Operators marketed AI enhancements to scale attacks and collected at least $100,000 in cryptocurrency, prompting legal action to disrupt the infrastructure and seize control of the platform.

Wed, September 17, 2025

Microsoft and Cloudflare Disrupt RaccoonO365 Phishing

#Microsoft #Cloudflare #Microsoft 365 #Phishing-as-a-Service #RaccoonO365 #Law Enforcement Action

🔒 Microsoft and Cloudflare coordinated a disruption of the RaccoonO365 Phishing-as-a-Service operation in early September 2025, seizing 338 malicious websites and Cloudflare Worker accounts. The service is linked to at least 5,000 stolen Microsoft 365 credentials from 94 countries since July 2024 and was used in large campaigns, including a tax-themed sweep that targeted over 2,300 U.S. organizations. Kits bundled CAPTCHA and anti-bot evasion, were sold via a private Telegram channel, and investigators identified a suspected leader, prompting a criminal referral.