Read the original article at https://blog.knowbe4.com/fbi-kali365-phishing-kit-targeting-microsoft-365
The US Federal Bureau of Investigation (FBI) has warned that a new phishing-as-a-service (PhaaS) platform called “Kali365” is targeting OAuth tokens to gain direct access to users’ Microsoft 365 accounts without stealing credentials or multifactor authentication codes.
Read the original article at https://blog.knowbe4.com/fbi-kali365-phishing-kit-targeting-microsoft-365