Phishers Abuse Microsoft 365 to Spoof Internal Users

Source: darkreading | Added:

Phishers are exploiting the 'Direct Send' feature of Microsoft 365 to impersonate internal users, successfully bypassing both Microsoft Defender and third-party secure email gateways. This highlights vulnerabilities in email security protocols within trusted systems.

---

Impact: Microsoft 365

In the Wild: Yes

Age: Newly disclosed

Remediation: Not specified

Read Full Original Article →