Tag: Microsoft 365
-
A Microsoft 365 outage caused widespread service disruptions across multiple core products, including Teams, Outlook, and Microsoft Defender. The incident affected users across North America and temporarily limited access to communication, collaboration, and security tools relied on by businesses and individuals. The Microsoft 365 outage highlighted the scale of dependency on cloud-based productivity platforms. Even…
-
Microsoft 365 OAuth phishing attacks are increasing, with threat actors targeting enterprise users through legitimate authentication workflows. Instead of stealing passwords, attackers now trick users into granting access by abusing OAuth device code authentication. These campaigns rely on social engineering rather than technical exploits. Victims are guided to Microsoft’s official login pages, which lowers suspicion…
-
Microsoft 365 AI subscriptions are facing major backlash after Australia’s competition regulator accused Microsoft of misleading customers into paying for more expensive plans. The Australian Competition and Consumer Commission (ACCC) alleges that Microsoft’s promotion of its Copilot-integrated packages deceived around 2.7 million users. According to the regulator, Microsoft bundled its Copilot AI assistant into Microsoft…
-
Attackers are now exploiting trusted link wrapping services to steal Microsoft 365 credentials. The threat actors abused features in Proofpoint and Intermedia to mask phishing links. How Attackers Exploited Trusted Links From June through July 2025, attackers compromised email accounts with active link wrapping. They inserted malicious URLs, often shortened first. Then the wrapping service…