Recent phishing campaigns are leveraging HTTP client tools like Axios in combination with Microsoft’s Direct Send feature to bypass security defenses and target enterprise users. These tactics have increased their success rate and scale, exploiting trusted platforms and authentication workflows. #Axios #MicrosoftDirectSend
Keypoints
- Threat actors are abusing Axios to build efficient attack pipelines for phishing campaigns.
- Axios activity surged by 241% from June to August 2025, indicating widespread exploitation.
- Combining Axios with Microsoft Direct Send allows attackers to bypass security measures and spoof trusted users.
- Infected email campaigns use social engineering tactics, such as compensation themes and fake login pages, to steal credentials.
- Organizations are advised to secure Direct Send, improve email policies, and train employees to detect phishing attempts.
Read More: https://thehackernews.com/2025/09/axios-abuse-and-salty-2fa-kits-fuel.html