Forg365 is a new phishing platform targeting Microsoft 365 accounts with AI emails, AiTM attacks, and device-code abuse.
A new phishing-as-a-service (PhaaS) operation called Forg365 focuses on stealing Microsoft 365 accounts by combining ...
Forg365 targets Microsoft 365 with device code and AitM phishing, then uses stolen tokens for persistent browser sessions and ...
The FBI warns about Kali365, a phishing scam targeting Microsoft 365 accounts that can bypass multifactor authentication using device code tricks.
Talos details ARToken, a PhaaS panel tied to EvilTokens that supports device code phishing, BEC workflows, SharePoint theft, ...
Cybercriminals are abusing Microsoft's Trusted Signing platform to code-sign malware executables with short-lived three-day certificates. Threat actors have long sought after code-signing certificates ...