Effective Phishing Campaign Targeting European Companies and Institutions

A phishing campaign targeting European companies, particularly in the automotive, chemical, and industrial sectors, was identified in June 2024. The campaign, which utilized HubSpot Free Form Builder links and Docusign-enabled PDF attachments, aimed to harvest account credentials and gain access to Microsoft Azure cloud infrastructure. The threat actor employed various techniques, including urgency-inducing language, failed authentication checks, and VPN proxies, to evade detection and compromise victims.