A bad actor is using a Microsoft 365 test domain and a self-created distribution list to bypass traditional email protections and entice victims to hand over their PayPal account information in what Fortinet’s CISO is calling a “phish-free” phishing campaign.
The post Fortinet CISO Details ‘Phish-Free’ Phishing Scheme Using PayPal appeared first on Security Boulevard.