The FBI just issued an urgent warning for anyone using Microsoft Teams, Outlook, or OneDrive over a new phishing scheme

A fast-spreading cyberattack kit called ‘Kali365’ allows low-skill scammers to hijack a user’s account without ever stealing ...

FBI Warns Microsoft Users—New Attack Gains Access To Accounts

The FBI issued a warning on May 21, as a new AI-powered attack enables "threat actors to obtain Microsoft 365 access tokens and bypass multi-factor authentication ( MFA) protocols without intercepting ...
Windows Report

FBI Warns Kali365 Can Bypass Microsoft 365 MFA Using OAuth Tokens

The FBI warns that Kali365 phishing attacks can bypass Microsoft 365 MFA by stealing OAuth session tokens through device code phishing.
Neowin

Microsoft gives final warning about Basic Auth deprecation in Exchange Online

Microsoft has issued what appears to be the final public warning about Basic Authentication in Exchange Online being deprecated next month. Customers have been advised to switch to Modern Auth. For ...

Microsoft Is Phasing Out SMS 2FA Codes For Personal Accounts

Microsoft is phasing out SMS 2FA for personal accounts as it pushes users toward passkeys and other passwordless sign-in methods. Here’s what users should know.
Bleeping Computer

Microsoft will disable Exchange Online basic auth next month

Microsoft warned customers today that it will finally disable basic authentication in random tenants worldwide to improve Exchange Online security starting October 1, 2022. Today's announcement ...
ZDNet

CISA: Switch to Microsoft Exchange Online 'Modern Auth' before October

It's finally time for businesses running Exchange Online to switch from Basic Authentication to Modern Authentication before Microsoft disables the former on October 1, 2022, according to the US ...

Microsoft Edge moves toward passwordless authentication with Windows Hello

Goodbye master password, hello Windows Hello. Edge is ditching passwords in favor of biometrics.
Redmond Magazine

Major Microsoft Multifactor Authentication Vulnerability Revealed

A vulnerability in Microsoft’s multifactor authentication (MFA) system has been uncovered by cybersecurity firm Oasis Security, allowing attackers to bypass security measures and access sensitive data ...
Bleeping Computer

Microsoft will disable Basic Auth in Exchange Online in October 2022

Microsoft announced that Basic Authentication will be turned off for all protocols in all tenants starting October 1st, 2022, to protect millions of Exchange Online users. This announcement comes ...
Neowin

Microsoft is killing off Basic Auth in Exchange Online starting today

Microsoft has started deprecating Basic Auth in Exchange Online starting from today, as it has been warning for years. Customers are encouraged to migrate to Modern Auth (OAuth 2.0). After years of ...
heise online

Exchange Online: Microsoft updates timeline for SMTP Auth Basic end

For various protocols, Microsoft has already removed Basic Authentication in Exchange Online. The timeline for SMTP is being postponed. So far, Microsoft has disabled simple username-password login ...