Microsoft: 10,000 Orgs Targeted in Phishing Attack That Bypasses Multifactor Authentication - DARKReading
7/13/2022 12:00:00 AM2 years 9 months ago
by Dark Reading Staff
by Dark Reading Staff
The massive phishing campaign does not exploit a vulnerability in MFA. Instead, it spoofs an Office 365 authentication page to steal credentials.
Microsoft recently discovered a widespread phishing attack campaign targeting Office 365 users that lures victims to a phony Office authentication page where it pilfers their credentials and later ex… [+1352 chars]
full article...