Your Microsoft text codes are going away

Microsoft says it will phase out SMS codes for personal account sign-ins, urging users to switch to passkeys for better ...

New scam targets Microsoft users, FBI warns. Here's how to protect yourself

This phishing scam doesn't rely on a fake website. Instead, it tricks users into approving access themselves.
Memeburn

FBI Warns Microsoft Users as Kali365 Attack Spreads Across Outlook and Teams

The FBI warns Microsoft 365 users about Kali365 phishing attacks that bypass MFA and steal Outlook, Teams, and OneDrive ...

FBI Warns: ‘Kali365’ Phishing Service Targets Microsoft 365 Accounts

The FBI warned that Kali365 can hijack Microsoft 365 accounts by abusing device code authentication and capturing OAuth ...
Windows Report

FBI Warns Kali365 Can Bypass Microsoft 365 MFA Using OAuth Tokens

The FBI warns that Kali365 phishing attacks can bypass Microsoft 365 MFA by stealing OAuth session tokens through device code phishing.
Bleeping Computer

Tycoon2FA hijacks Microsoft 365 accounts via device-code phishing

The Tycoon2FA phishing kit now supports device-code phishing attacks and abuses Trustifi click-tracking URLs to hijack Microsoft 365 accounts. Despite an international law enforcement operation ...

FBI warns of phishing scam targeting Microsoft 365 accounts

The FBI is warning the public about a new phishing scam called Kali365 that allows hackers to break into Microsoft 365 accounts.
Infosecurity-magazine.com

Russian Hackers Target Microsoft 365 Accounts with Device Code Phishing

Multiple Russian nation-state actors are targeting sensitive Microsoft 365 accounts via device code authentication phishing, a new analysis by Volexity has revealed. The firm first observed this ...
Memeburn

FBI Warns Microsoft 365 Users About Dangerous Phishing Tool

Kali365 targets Microsoft 365 users’ accounts, using a phishing service that doesn’t require password theft despite bypassing ...