In a significant cybersecurity breakthrough, Nigerian authorities arrested individuals linked to a sophisticated phishing operation targeting Microsoft 365 users worldwide. The Nigerian Police National Cyber Crime Centre conducted coordinated raids in Lagos and Edo states, leading to the arrest of three suspects connected to the Raccoon0365 phishing platform. This tool was used to create fake Microsoft login portals designed to steal user credentials and gain access to corporate and personal email accounts.
Among those arrested was Okitipi Samuel, also known as “RaccoonO365,” considered the primary developer of the phishing infrastructure. Investigators say he operated a Telegram channel where phishing links were sold in exchange for cryptocurrency, while fraudulent Microsoft 365 login pages were hosted using stolen or fraudulently obtained credentials. Laptops, phones, and digital devices recovered during the raids have been linked to the cybercrime network.
Authorities stated that the toolkit facilitated widespread phishing attacks between January and September 2025, resulting in unauthorized access, compromised corporate email, and data breaches in the corporate, financial, and education sectors. While three suspects were arrested, only Samuel has been directly linked to the development and operation of Raccoon0365.
The arrests highlight the growing international cooperation in combating cybercrime, as Nigerian authorities track illicit cryptocurrency profits and work to dismantle global phishing networks. Citizens and organizations are urged to strengthen their cybersecurity measures to prevent similar attacks.
SOURCE: Bleepingcomputer.com
Be the first to comment