Email Threat Radar - September 2025
Barracuda Networks, Tuesday, September 23rd, 2025
Over the last month, Barracuda threat analysts have identified several notable email-based threats targeting organizations around the world.
The threats include:
> Tycoon and EvilProxy phishing kits exploiting Microsoft OAuth for access and to redirect URLs to malicious pages
> Attackers abusing a wider range of online platforms to create and host phishing pages, including cloud-based serverless environments, website creation sites and visual productivity tools
> In brief: The abuse of Google Translate, scammers targeting DirectSend, Google Classroom and Meet