The Hacker News

Microsoft Warns Misconfigured Email Routing Can Enable Internal Domain Phishing

Attackers exploit misconfigured email routing and weak spoof protections to send internal-looking phishing emails for ...
CSO Online

Microsoft warns of a surge in phishing attacks exploiting email routing gaps

Threat actors are abusing misconfigured MX records and weak DMARC/SPF policies to make phishing emails look internal, ...
Infosecurity Magazine

Phishing Attacks Exploit Misconfigured Email Routing Settings to Target Microsoft 365 Users

“Successful credential compromise through phishing attacks may lead to data theft or business email compromise (BEC) attacks ...

Microsoft's the top brand scammers use when phishing for clicks, study shows

Scammers routinely impersonate Microsoft online. New research breaks down how the brand is used in phishing and why it still works.
SecurityWeek

Complex Routing, Misconfigurations Exploited for Domain Spoofing in Phishing Attacks

Threat actors abuse complex routing and misconfigured protections to spoof domains and send phishing emails that appear to be ...

Microsoft typosquatting scam swaps letters to steal logins

Phishing scammers use rnicrosoft.com domain to impersonate Microsoft by replacing "m" with "rn" in typosquatting attacks that ...

Warning over shock ‘Google email’ that steals your login & lets crooks break into almost any account

A SINISTER hacking “campaign” that used extremely convincing “emails from Google” has been exposed. Cyber-crooks were able to ...
Yahoo

This Microsoft 365 phishing campaign can bypass MFA - here's what we know

Researchers from Check Point have discovered a new phishing campaign, abusing a legitimate Microsoft product in an attempt to steal people’s login credentials. In a new blog post, published earlier ...