Microsoft 365 Under Siege: Phishing Campaign Bypasses MFA Across 5 Countries

A global phishing campaign targeting Microsoft 365 bypasses security codes using a legitimate login feature, impacting hundreds of organizations.
Visual Studio Magazine

OpenClaw Gets a Microsoft 365 Champion While VS Code Tooling Stays Nascent

Omar Shahine's new Microsoft role focused on bringing OpenClaw and personal agents to Microsoft 365 adds weight to the workplace-assistant story for the open-source AI framework, even as its current ...
Microsoft

Inside an AI‑enabled device code phishing campaign

A new wave of device code phishing shows how threat actors are scaling account compromise using AI and end‑to‑end automation.
CSO Online

EvilTokens abuses Microsoft device code flow for account takeovers

The phishing-as-a-service toolkit leverages legitimate authentication to capture tokens and access Microsoft 365 services.