• Home
  • Beware of New Email Attack That Begins with Harmless Spam

Beware of New Email Attack That Begins with Harmless Spam

Beware of New Email Attack That Begins with Harmless Spam
Post Date: June 30, 2025

Beware of New Email Attack That Begins with Harmless Spam

Imagine if the spam clogging your inbox wasn’t just a nuisance but the bait for a sophisticated attack.

Everyone can agree email spam is annoying, but it’s ultimately harmless and won’t hurt you or your organization.

However, attackers are weaponizing that harmlessness, hoping to catch you off guard by offering help to get rid of the unwanted messages.

NVISO, a cybersecurity services firm, published an analysis of attackers using spam fatigue tactics to hack Microsoft users.

Hackers send a flood of innocent-looking emails followed by a Teams chat pretending to be a help desk or IT support.

From there, the attackers gain their victims’ trust to steal sensitive data or deploy malicious software.

Let’s break down the steps of the attack and offer tips so you don’t become a victim.

How Does the Email Attack Happen?

Unlike traditional phishing, which relies on tricking users into clicking malicious links, this attack uses more indirect tactics:

  1. The attacker sets up a fake but legitimate-looking Microsoft organization. This makes it easier to appear trustworthy when contacting targets.
  2. They flood the victim’s inbox with subscription spam. These emails clutter the inbox, making it harder to spot legitimate alerts or warnings.
  3. The attacker reaches out via Microsoft Teams. Posing as support, they offer help with the sudden email issue.
  4. They convince the victim to install remote access software. This gives the attacker full control of the device.
  5. Once in, the attacker disables security tools, steals data and can deploy malware

“Unlike traditional phishing, which relies on tricking users into clicking malicious links, this new email attack uses more indirect tactics.”

In a slightly different version of this attack, sometimes a flood of spam emails is meant to mask stolen identities or credit cards.

We recently had a client who had their identity stolen, and the attacker attempted to flood their inbox with messages hoping any correspondence from their bank would go unread.

Luckily, their bank got in contact with them and was able to stop any fraudulent activity.

How Do I Avoid Becoming a Victim?

The emails in this attack aren’t malicious, but the attackers are manipulating you, making you believe they are helping when they are preying on your trust.

There are some things you can do to protect yourself and your organization:

  • Be wary of Teams messages from people outside your organization. If they claim to be your IT team or manage service provider, contact them another way to confirm it’s them. Note: No one should contact you regarding a spam issue, but most scams only work if the attacker initiates contact.
  • Disable messages from external users in Teams. If that’s not possible, at the very least only allow specific domains to communicate with your organization.
  • Set up anti-spam policies that will prevent your mailbox from receiving numerous spam emails.
  • Never download software. We and other MSPs usually can remote into your devices without you downloading additional software.

Stay Alert, Stay Secure

Does your organization need protection from cybersecurity threats? Don’t wait until you’ve already been attacked!

Contact us to schedule a consultation to see how we can help secure your sensitive data with anti-spam policies and phishing training.

Stay updated! Get tips and insights delivered to your inbox weekly by subscribing to our newsletter.

Get Support
Subscribe To Our Newsletter

Share this post

Related Posts

Microsoft Isn’t Deleting Your Passwords
16Jul

Microsoft Isn’t Deleting Your Passwords

Aug. 1, 2025, is an important date for users who... read more

Michigan Pipe Embraces IT Transparency
14Jul

Michigan Pipe Embraces IT Transparency

IT can be messy and complicated. A lot of organizations... read more

Is Your Website Being Maintained for Regular Updates?
09Jul

Is Your Website Being Maintained for Regular Updates?

A well-maintained website can generate a ton of business for... read more

Identity Threat Detection and Response Grand Rapids Cybersecurity
07Jul

Why Your Organization Needs Identity Threat Detection and Response

Most security tools watch the doors and windows. Identity threat... read more

What Happens When I Manually Encrypt an Email in Outlook?
02Jul

What Happens When I Manually Encrypt an Email in Outlook?

Ever wonder if your email truly is private? Even if your... read more

Secure Your Remote Workers with Microsoft Entra Internet Access
25Jun

Secure Your Remote Workers with Microsoft Entra Internet Access

Have you had employees check email or access sensitive company... read more

How To Use Copilot Grand Rapids Cybersecurity
23Jun

How to Use Copilot to Summarize Teams Meetings

In a perfect world, every meeting would have a dedicated... read more

3 Signs You’re Being Scammed Over Tariffs
18Jun

3 Signs You’re Being Scammed Over Tariffs

Attackers are using the uncertainty surrounding tariffs to dupe people... read more

Microsoft Ends Business Premium Grants for Nonprofits
16Jun

Microsoft Ends Business Premium Grants for Nonprofits

Starting next month, Microsoft will discontinue the... read more

5 Common IT Challenges Faced by Small Businesses
12Jun

5 Common IT Challenges Faced by Small Businesses

Running and maintaining an efficient small business is a lot... read more