Storm-2246
0 incidentes
0 paises
0 sectores
apt NG Ultimo: -
Storm-2246 is a cybercriminal organization operating the RaccoonO365 Phishing-as-a-Service (PhaaS) platform, which emerged in July 2024 and rapidly became a prominent tool for stealing Microsoft 365 credentials. The group, reportedly led by Joshua Ogundipe of Nigeria, develops, markets, and sells subscription-based phishing kits via Telegram to a customer base exceeding 850 members. These kits enable even cybercriminals with limited technical skills to conduct credential theft by mimicking official Microsoft communications. A distinctive characteristic is their sophisticated use of legitimate services, such as Cloudflare Turnstile CAPTCHA, to imbue phishing pages with an air of authenticity and to evade detection, alongside employing homoglyph domains like 'rnicrosoft.com' to deceive users. The group's primary motivation is financial gain, having accrued at least $100,000 in cryptocurrency payments from their service subscriptions. RaccoonO365 further distinguishes itself through its c
Paises objetivo (SOCRadar)
Australia
Nigeria
United States
Sectores objetivo (SOCRadar)
Other Information ServicesMonetary Authorities-Central BankSoftware PublishersManufacturingPublic AdministrationAdministrative &Waste Management InsuranceElectrical&Electronical ManufacturingInformation ServicesComputer Design & Services