Microsoft has taken decisive legal action against RaccoonO365, a rapidly expanding cybercrime service used to steal Microsoft 365 credentials. The tech giant, through a court order from the Southern District of New York, has seized 338 websites linked to RaccoonO365, effectively dismantling its technical infrastructure and severing criminals’ access to victims. This operation highlights the accessibility of cybercrime tools, which have put millions of users at risk worldwide.
RaccoonO365 has been implicated in the theft of approximately 5,000 Microsoft credentials across 94 countries, with around 70 victims identified in Singapore alone. Although not all stolen credentials lead to compromised networks or fraud, the scale of the threat underscores the persistent effectiveness of social engineering and phishing tactics employed by cybercriminals.
The disruption of RaccoonO365’s services is a significant step in Microsoft’s ongoing efforts to combat cybercrime and protect its users from potential threats.
This legal action by Microsoft not only disrupts a major phishing operation but also serves as a warning to cybercriminals exploiting simple tools to facilitate widespread harm. The company’s proactive measures demonstrate its commitment to safeguarding user data and maintaining the integrity of its services.
