Office 365 Phishing Campaign Uses Kaspersky’s Amazon SES Token


A surge in spearphishing emails designed to steal Office 365 credentials were rigged to look like they came from a Kaspersky email address.

In spite of coming from sender addresses such as noreply@sm.kaspersky.com, nobody at Kaspersky sent the phishing emails, the security company said in an advisory issued on Monday. Rather, the emails were sent with Kasperskyi’s legitimate, albeit stolen, Amazon Simple Email Service (SES) token.

Amazon SES is a scalable email service that lets developers send mail from any app, including in marketing or mass email communications.

Read more…
Source: ThreatPost