Forbes

New Warning As Microsoft 365 Attack Can Bypass Email Security

Beware this highly sophisticated Microsoft 365 attack. Update, March 15, 2025: This story, originally published March 13, has been updated with further technical detail regarding the Microsoft 365 ...
Bleeping Computer

Microsoft 365 'Direct Send' abused to send phishing as internal users

An ongoing phishing campaign abuses a little‑known feature in Microsoft 365 called "Direct Send" to evade detection by email security and steal credentials. Direct Send is a Microsoft 365 feature that ...