Storia in 7 fonti

Kali365 phishing kit bypasses MFA and steals Microsoft logins

The FBI has warned that attackers are using a new phishing kit to gain long-term access to Microsoft Outlook, Teams, and OneDrive accounts.

Raccontata daforbes.combleepingcomputer.comcryptonomist.chinfobae.comqz.comelcomercio.pemalwarebytes.com

Confronto fonti

6 prospettive sulla stessa storia

AI · summaries

malwarebytes.comStai leggendo2 h fa

Kali365 phishing kit bypasses MFA and steals Microsoft logins

The FBI has warned that attackers are using a new phishing kit to gain long-term access to Microsoft Outlook, Teams, and OneDrive accounts.

originale

bleepingcomputer.com2 g fa

FBI warns of Kali365 phishing service targeting Microsoft 365 accounts

The FBI is warning about the Kali365 phishing-as-a-service platform (PhaaS) that is used to hijack Microsoft 365 accounts by abusing OAuth device code authentication to steal session tokens and bypass multi-factor…

Leggi questa versione → originale

qz.com1 g fa

FBI warns of Kali365 phishing service targeting Microsoft 365

The Kali365 platform, distributed via Telegram since April, lets attackers steal OAuth tokens and access Outlook, Teams, and OneDrive without a password

Leggi questa versione → originale

cryptonomist.ch1 g fa

Kali365 phishing Microsoft 365: allerta FBI per le aziende

Kali365 phishing Microsoft 365 mette a rischio token OAuth e bypassa la MFA: guida per aziende su come proteggere Outlook, Teams e OneDrive.

Leggi questa versione → originale

forbes.com2 g fa

FBI Warns Microsoft Users—New Attack Gains Access To Accounts

If you see one of these emails — check carefully, you may be under attack.

Leggi questa versione → originale

elcomercio.pe20 h fa

Kali365, una amenaza emergente que roba los tokens para secuestrar las cuentas

Esta amenaza de ‘phishing’ ha sido pensada para usuarios engañar a usuarios de Microsoft 365, alerta el FBI. Para esto usa un correo electrónico con el que suplanta los servicios de productividad

Leggi questa versione → originale

Timeline cronologica

1. lunedì 25 maggio 2026·forbes.com
   

   FBI Warns Microsoft Users—New Attack Gains Access To Accounts

   If you see one of these emails — check carefully, you may be under attack.

2. lunedì 25 maggio 2026·bleepingcomputer.com
   

   FBI warns of Kali365 phishing service targeting Microsoft 365 accounts

   The FBI is warning about the Kali365 phishing-as-a-service platform (PhaaS) that is used to hijack Microsoft 365 accounts by abusing OAuth device code authentication to steal…

3. lunedì 25 maggio 2026·cryptonomist.ch
   

   Kali365 phishing Microsoft 365: allerta FBI per le aziende

   Kali365 phishing Microsoft 365 mette a rischio token OAuth e bypassa la MFA: guida per aziende su come proteggere Outlook, Teams e OneDrive.

4. martedì 26 maggio 2026·infobae.com
   

   Nueva plataforma de phishing amenaza a los usuarios de Microsoft 365

   La plataforma Kali365 permite lanzar campañas masivas de phishing sin conocimientos técnicos avanzados

5. martedì 26 maggio 2026·qz.com
   

   FBI warns of Kali365 phishing service targeting Microsoft 365

   The Kali365 platform, distributed via Telegram since April, lets attackers steal OAuth tokens and access Outlook, Teams, and OneDrive without a password

6. martedì 26 maggio 2026·elcomercio.pe
   

   Kali365, una amenaza emergente que roba los tokens para secuestrar las cuentas

   Esta amenaza de ‘phishing’ ha sido pensada para usuarios engañar a usuarios de Microsoft 365, alerta el FBI. Para esto usa un correo electrónico con el que suplanta los servicios…

7. mercoledì 27 maggio 2026·malwarebytes.com
   

   Kali365 phishing kit bypasses MFA and steals Microsoft logins

   The FBI has warned that attackers are using a new phishing kit to gain long-term access to Microsoft Outlook, Teams, and OneDrive accounts.