{ads}

Misconfigured Server Reveals Three Evilginx Phishing Operations Targeting Microsoft 365



July 13, 2026 at 01:00PM

An attacker running a live Microsoft 365 phishing operation left a Python web server listening on a public port with directory listing switched on. The command that did it: python3 -m http.server 8080, was still sitting in the readable .bash_history. From that one lapse, French security firm Lexfo lifted the operator's entire toolkit and pivoted through it to two more

from The Hacker News https://ift.tt/tPlKdQk

0 Response to "Misconfigured Server Reveals Three Evilginx Phishing Operations Targeting Microsoft 365"

Post a Comment

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads