The Limits of “Impossible Travel” Flags in BEC Attacks: Attackers Using Residential IP Addresses
Microsoft warns of new threat in business email compromise (BEC) and account takeover attacks Microsoft Security researchers have discovered that cybercriminals are buying locally generated IP addresses to hide the origin of their login attempts, enabling them to circumvent the common “impossible travel” security detection. Impossible travel flags are triggered when a task is performed…