Phishing actors exploit complex routing and misconfigurations to spoof domains

Threat actors are exploiting complex routing scenarios and misconfigured spoof protections to conduct sophisticated phishing attacks. The attackers are crafting spoofed emails that appear to be sent internally within organizations. They leverage routing misconfigurations and weaknesses in anti-spoofing mechanisms to bypass security controls. This represents an active campaign targeting organizations through advanced email spoofing techniques. The sophisticated nature of these attacks makes them particularly dangerous as they can bypass traditional email security measures.