New phishing kits target Microsoft 365 accounts, evade MFA
C BleepingComputer ·
Admiralty grading (A–F · 1–6)
Source reliability
- A Completely reliable
- B Usually reliable
- C Fairly reliable
- D Not usually reliable
- E Unreliable
- F Cannot be judged
Information credibility
- 1 Confirmed
- 2 Probably true
- 3 Possibly true
- 4 Doubtful
- 5 Improbable
- 6 Cannot be judged
NATO Admiralty (AJP-2.1) grades confidence, independent of the risk score. Cross-source corroboration isn't tracked for non-CVE news, so single-source items are capped at a lower credibility number; a low number does not imply low quality.
Key insight
New phishing kits use advanced social engineering techniques to bypass multi-factor authentication, posing an immediate threat to organizations relying on Microsoft 365.
Description
Modern phishing campaigns specifically target Microsoft 365 accounts and employ techniques to bypass multi-factor authentication. Attackers use deceptively authentic decoys and possibly proxy-based approaches or real-time phishing techniques to steal authentication codes or trick users into surrendering login credentials. Such campaigns are currently actively deployed in the wild and rank among the most common attack vectors against enterprise environments. Users with MFA enabled remain vulnerable if the authentication method is compromised through social engineering or technical redirection.
Risk score
- cvss base
- 0.00
- kev bonus
- 0.00
- epss bonus
- 0.00
- poc bonus
- 15.00
- raw before weight
- 15.00
- industry weight
- 1.10
- freshness factor
- 1.00
- exploitability factor
- 1.00
- days old
- 0.00
- vendor mismatch penalty
- 0.00
- consensus penalty
- -3.00
Path: operational
Consensus check
The pipeline self-checks before delivery. These rules lowered the score:
-
TTP_SKIPPEDTTP mapping skipped (placeholder or aggregation article) −3
- Consensus penalty:
- −3.0
- Total penalty:
- −3.0