ByteBrief
We're a portrait publication through and through. Turn your phone back and your briefing picks up right where you left it.
(We tried widescreen once. It wasn't us.)
A new phishing-as-a-service operation called Forg365 targets Microsoft 365 accounts using adversary-in-the-middle and device-code methods with AI-assisted lure generation. The platform includes a browser extension called ForgCookie for persistent access. ZeroBEC researchers report the platform uses Amazon SES for email delivery and Cloudflare Pages for landing pages.
Tap to vote and see what everyone thinks.
Summary by ByteBrief
Hackers breach Microsoft 365 with password-spraying