Contact Us
Aug 1

August PhishQueue Phishing News

“Impersonation is the new infiltration — stay alert with Phishqueue.”

Fake Microsoft Apps Used to Steal Login Codes

The Growing Threat

What’s Going On?

Bad guys are sending fake emails that pretend to come from Microsoft or commonly used applications like SharePoint, DocuSign, or Adobe. These emails prompt recipients to click and “approve” something that looks harmless. In reality, the attackers are trying to trick you into giving access to your account — including your multi-factor authentication (MFA) code (the one-time code you receive when logging in).

Once they obtain that code, they may be able to access your Microsoft account — and in some cases, even retain access after you change your password.

Sources: CSO Online – Cybercrooks Faked Microsoft Authentification Apps

🛡️ Your Best Defense: Do Not Guess. Submit It.

If something feels even a little weird — do not click.

Instead, click the PhishQueue button in your email toolbar.

 

📌 Remember: Our team will examine the email for you and let you know whether it is safe.

Do not try to figure it out on your own — that is what we are here for

_____________________________________

🤖Attackers Use Fake OAuth Apps with Tycoon Kit to Breach Microsoft 365 Accounts

🔍 Example: What actually happened: Scammers created over 50 fake Microsoft applications. The apps looked real and had names like “DocuSign Secure” or “RingCentral Meeting.” People clicked, approved the apps, and unknowingly granting access to their accounts.

The result: It worked — almost 3,000 users in 900 companies were successfully compromised.

🚨 The Bottom Line

Even if an app or email looks real, that doesn’t mean it is.

👉 When in doubt — PhishQueue it.

______________________________________________________

Quick Tips to Stay Safe:

  • Always use the PhishQueue button if you are unsure.
  • Never trust links just because they look like Microsoft or Google.
  • Do not approve app requests unless you are expecting them.
  • If something is urgent and surprising — that is a red flag.

______________________________________________________

🎭 Phishing Joke of the Month

💡Why don’t phishers throw parties?

👉Because no one wants to RSVP – they just click PhishQueue instead.😆

Cybersecurity is serious, but staying informed does not have to be dull!

Stay vigilant,

The PhishQueue Team

Paul Henry's 14 Absolute Truths In Network Security

We must recognize the 14 Absolute Truths In Network Security.

Reality check time – It is not too late.

Here are fourteen things you need to know:

  1. There is no such thing as security, only varying degrees of insecurity…
  2. The network does not exist to be secured…
14 Absolute Truths In Network Security

Download Full Document in PDF Form:

BlogMore from BSI

100% Privacy Guaranteed
Sep 10

BSI’s September 2025 Get Lit and Learn Networking Event – Corona Cigar Company

This event will be educational and informative. We offer ISC2 and ISACA CPE credits, if you provide us with your membership number, you are eligible to earn credits. We will provide ISC2 and ISACA certificates following the event. Event Sponsor:   & Title of Event: BSI Cyber Smoke Event Summary: Join us at Corona Cigar […]

chasitynoel Aug 28 2025
Aug 1

August PhishQueue Phishing News

“Impersonation is the new infiltration — stay alert with Phishqueue.” Fake Microsoft Apps Used to Steal Login Codes The Growing Threat What’s Going On? Bad guys are sending fake emails that pretend to come from Microsoft or commonly used applications like SharePoint, DocuSign, or Adobe. These emails prompt recipients to click and “approve” something that […]

chasitynoel Aug 27 2025
Jul 1

July PhishQueue Phishing News

“New Job, New Threats — PhishQueue Has Your Back from Day One.” New Employees Are Prime Targets for Phishing – Here’s How to Stay Safe The Growing Threat What’s Going On? If you are new to the company, welcome aboard! But heads up: cybercriminals love new employees. A new study shows that 71% of new […]

chasitynoel Jul 28 2025
Aug 13

BSI’s August 2025 Get Lit and Learn Networking Event – Corona Cigar Company

This event will be educational and informative. We offer ISC2 and ISACA CPE credits, if you provide us with your membership number, you are eligible to earn credits. We will provide ISC2 and ISACA certificates following the event. Event Sponsor: Title of Event: BSI Cyber Smoke Event Summary: Join us at Corona Cigar Company for […]

chasitynoel Jul 25 2025
Jul 16

BSI’s July 2025 Get Lit and Learn Networking Event – Corona Cigar Company

This event will be educational and informative. We offer ISC2 and ISACA CPE credits, if you provide us with your membership number, you are eligible to earn credits. We will provide ISC2 and ISACA certificates following the event. Event Sponsor: & Title of Event: BSI Cyber Smoke Event Summary: Join us at Corona Cigar Company […]

chasitynoel Jul 2 2025
Jun 1

June PhishQueue Phishing News

“Looks Like Google. Acts Like a Scam. PhishQueue Knows the Truth.” Even Google Tools Can Be Tricked – Here’s What You Should Know The Growing Threat Cybersecurity Alert: Two New Email Scams You Should Know About Cybercriminals are always evolving and their latest method is especially deceptive. Scammers are now abusing a legitimate Google service […]

chasitynoel Jun 26 2025
×

BSI Partners

Airwatch
Algosec
Aruba
Armis
Avertium
Barracuda
BeyondTrust
Bitsight
Blancco
Checkmarx
Check Point
Cisco
CyberArk
Cylance
Digital Guardian
Druva
Duo
Exabeam
F5
Flashpoint
ForcePoint
Forescout
Fortinet
Gigamon
Horizon3
Juniper Networks
Keysight
KnowBe4
LogRhythm
Malwarebytes
Mimecast
NetBrain
Netwrix
Nexthink
Okta
Palo Alto Networks
Proofpoint
Pulsedive
PulseSecure
Qualys
Rapid7
RestorePoint
Riverbed
Salt
SecurityScorecard
SentinelOne
Siemplify
Solarwinds
Sophos
Splunk
Swimlane
Tenable
Teramind
Thales
ThreatStop
Thycotic
Trellix
Trend Micro
Trustwave
Tufin
Varonis
Vectra
VMware