I would like advice on achieving the following scenario: someone has gained access in a corporate environment and has also obtained access to a user's system within that network, who as corporate email client- MS Outlook. The objective is to send an email to another employee pretending to be their manager, as access to the manager's email is not possible. Also don't want to hack the manager accounts to raise any red flags and further alerts the SOC. This scenario resembles an internally spoofed spear-phishing email.
What are the ways to achieve this?
Additionally, considering that the SOC has access to email logs, what are the areas of caution?
What are the ways to achieve this?
Additionally, considering that the SOC has access to email logs, what are the areas of caution?
Последнее редактирование: