A major phishing service provider has been shutdown by Microsoft and Cloudflare.

Microsoft and Cloudflare dismantled the RaccoonO365 phishing-as-a-service platform, which had stolen over 5,000 Microsoft 365 credentials across 94 countries. The service, rented for up to $999, allowed cybercriminals to easily create convincing phishing emails and websites. The operation’s leader, Nigerian programmer Joshua Ogundipe, was identified and reported to international law enforcement. Microsoft also filed a lawsuit and seized over 330 domains, while Cloudflare removed scripts used to evade detection.

Read more:

https://www.securityweek.com/raccoono365-phishing-service-disrupted-leader-identified/