Phishing Campaign Targets 20,000 European HubSpot Users
/ 1 min read
🔗 New phishing campaign targets European companies using HubSpot tools. Cybersecurity researchers from Palo Alto Networks Unit 42 have identified a phishing campaign, dubbed HubPhish, aimed at over 20,000 users in the automotive, chemical, and industrial sectors across Europe. The campaign peaked in June 2024, utilizing fake Docusign emails that redirect victims to malicious HubSpot forms, ultimately leading to a counterfeit Office 365 login page to harvest credentials. Attackers have been found to establish persistent access to compromised Microsoft Azure accounts by adding new devices. Additionally, phishing tactics are evolving, with attackers increasingly leveraging legitimate services like Google Calendar to bypass security measures. Users are advised to enable protective settings to mitigate these threats.
