Did someone clone me?
Sign up below to detect (AiTM) phishing attacks on your Microsoft 365 tenant
What is this?
DSCM is a free to use service that allows you to get notified whenever a (AITM)-phishing attack is performed against your Microsoft 365 tenant. A detection indicates that one of the users within your tenant attempted to login into the phishing website. This may indicate that access was obtained to the victims account, even bypassing advanced protections such as Multi-Factor Authentication (MFA). After a detection, you can take appropriate actions to protect your organization and employees. For example resetting passwords, revoking user sessions and performing investigation.
How does it work?
To detect phishing attacks on your Microsoft tenant, we are using the ability to add external CSS to your Microsoft login page. This allows us to add a reference to a (invisible) remote image hosted by DSCM. After adding the CSS, DSCM analyses every incoming request to validate whether it is originated from a malicious phishing website. If a malicious website is detected, we will notify you via emails. To provide easy installation, we’ve developed a fully automated installer. The following videos demonstrates our easy installer:
More details
Do you prefer installing DSCM manually within your tenant? Then check out our manual install instructions. Are you looking for more technical details? Check this write-up.