- Police Bust High-Profile Cybercrime Syndicate Behind Microsoft 365 Phishing Attacks
- Investigations revealed that the toolkit was designed to generate fake Microsoft login portals
- 3 suspects arrested
The Nigeria Police Force National Cybercrime Centre (NPF-NCCC) has arrested high-profile cybercrime suspects linked to sophisticated Microsoft 365 phishing attacks targeting major corporate organisations.
Eko Hot Blog reports that the arrests followed actionable intelligence from Microsoft Corporation, United States, transmitted through the Federal Bureau of Investigation (FBI), which exposed the use of a phishing toolkit known as RaccoonO365.
EDITOR’S PICK
- Ogun NUJ Secretary Remanded Over Alleged Kidnapping Of Policeman
- Lagos State DMO Partners with NGX and X-Academy for Capital Market Training
- Lagos State Disburses ₦103.7 Million Housing Loans to 225 Local Government Staff
Investigations revealed that the toolkit was designed to generate fake Microsoft login portals, enabling cybercriminals to harvest user credentials and gain unauthorised access to corporate, financial, and educational email systems.
According to the police, the coordinated phishing campaigns resulted in multiple cases of business email compromise, data breaches, and significant financial losses across several jurisdictions between January and September 2025.
Acting on the intelligence, the NPF-NCCC launched a joint operation in collaboration with Microsoft, the FBI, and the United States Secret Service. The investigation traced the cyberattacks to phishing emails carefully crafted to mimic legitimate Microsoft authentication pages.
Operatives were deployed to Lagos and Edo States, where 3 suspects were arrested. Subsequent searches of their residences led to the recovery of laptops, mobile phones, and other digital devices, which forensic analysis linked directly to the cyber fraud operation.
Further investigations identified Okitipi Samuel, also known by the aliases “RaccoonO365” and “Moses Felix,” as the principal suspect and alleged developer of the phishing infrastructure. Police findings revealed that he operated a Telegram channel where phishing links were sold in exchange for cryptocurrency and hosted fake Microsoft login portals on Cloudflare using stolen or fraudulently obtained email credentials.
However, the police clarified that there was no evidence connecting the other 2 arrested individuals to the development or operation of the phishing toolkit.
The Nigeria Police Force reaffirmed its commitment to securing the nation’s digital space through advanced cybercrime technologies, strengthened international cooperation, and sustained investigative and prosecutorial efforts to combat emerging cyber threats.
The Force noted that the successful operation highlights the critical role of global collaboration in tackling transnational cybercrime and protecting digital infrastructure.
FURTHER READING
- Epe Police Division Hosts Maiden Christmas Carol and Praise Night
- Special Jumat Prayer Held to Mark Coronation Anniversary of Orijeru of Igbooye Kingdom
- By Elections: Supreme Court Upholds SDP Victory, Fines INEC ₦2 Million
Click here to watch video of the week
