Microsoft 365 Subject to Email Bombing, ‘Vishing’ Attacks

Sophos warns of ransomware attacks using email bombing and vishing tactics through Microsoft Office 365. Two threat groups, STAC5143 and STAC5777, are deploying malware like Black Basta and Python ransomware. Organizations are advised to restrict Teams calls from outside organizations and raise employee awareness.