Skip to content
The Nexus
SECURITYMay 25 · 12:45 UTCBLEEPING COMPUTERLawrence Abrams

FBI warns of Kali365 phishing service targeting Microsoft 365 accounts

The FBI has issued a warning about the Kali365 phishing-as-a-service platform, which exploits OAuth device code authentication to hijack Microsoft 365 accounts. The service steals session tokens and bypasses multi-factor authentication (MFA), posing a significant cybersecurity threat.

Nexus surfaces and summarizes. The full story lives at the source.

Mentioned
Spot something wrong with this article?Report a problem →
Forward this
Related Signal

Adjacent reporting