Did you know that phishing kits are being sold for as little as $150 a month, enabling cybercriminals to launch large-scale attacks against businesses like yours?

Microsoft recently took decisive action against a prominent phishing-as-a-service (PaaS) operation known as ONNX. The company exposed the identity of its alleged operator, Abanoub Nady, and dismantled key parts of his infrastructure. Here’s what happened—and why it matters for your organization.

What Was ONNX?

The ONNX phishing service provided cybercriminals with tools to craft and distribute sophisticated phishing campaigns. It even enabled Adversary-in-the-Middle (AitM) attacks, a method where hackers intercept login sessions to bypass multi-factor authentication (MFA)—a reminder that even MFA isn’t foolproof against determined attackers.

With prices starting at $150 per month, ONNX allowed its customers to conduct large-scale credential harvesting, putting countless businesses and users at risk.

Microsoft’s Disruption Efforts

After tracking Nady’s activities since 2017, Microsoft, in collaboration with the Linux Foundation, took legal action to disrupt his operations. The company seized 240 malicious domains linked to phishing campaigns associated with ONNX and similar services like Caffeine and FUHRER.

This effort, supported by a court order in the Eastern District of Virginia, redirected ONNX’s technical infrastructure to Microsoft, effectively shutting it down and severing access for its cybercriminal customers.

Why This Matters to You

While this action is a win for cybersecurity, it’s not the end of phishing-as-a-service. As Microsoft itself noted, other providers will likely fill the void left by ONNX. This means businesses cannot afford to let their guard down.

Protecting Your Business from Phishing Attacks

1. Educate Your Team: Regularly train employees to spot phishing attempts and follow safe practices online.
2. Implement Advanced Security Measures: Beyond basic MFA, use tools like behavioral analytics to detect suspicious activity.
3. Partner with Experts: Cyber threats evolve daily. Partnering with professionals, like Cyber Safe Business, ensures your defenses stay ahead of the curve.

Microsoft’s efforts highlight the importance of staying proactive against cybercrime. If one phishing service could operate for years and compromise countless credentials, imagine the damage another could do without proper safeguards.