Cybersecurity researchers have uncovered a sophisticated phishing campaign that exploits link wrapping services and multi-tiered redirect chains to bypass security defenses and target users with Microsoft 365 phishing pages. The attack uses legitimate features like URL shortening and trusted security tools to obfuscate malicious links and evade detection. #Proofpoint #Intermedia
Keypoints
- The phishing campaign abuses link wrapping services from Proofpoint and Intermedia to hide malicious URLs.
- Attackers gain unauthorized access to email accounts to automatically rewrite messages with wrapped links.
- Multi-tiered redirect abuse involves cloaking links with URL shortening services like Bitly before passing through security filters.
- Threat actors impersonate Microsoft Teams and voicemail notifications to lure victims into credential phishing pages.
- SVG files, which support embedded scripts and hyperlinks, are exploited to bypass traditional anti-phishing protections.
Read More: https://thehackernews.com/2025/07/experts-detect-multi-layer-redirect.html