FBI-Flagged Phishing Kit Kali365 Expands Its Reach

Kali365, a phishing toolkit flagged by the FBI, has expanded its reach to new domains and networks. The FBI identified Kali365 as a tool used in targeted cyberattacks involving credential harvesting. Security researchers detected increased deployment of Kali365 in enterprise environments across North America. The toolkit includes preconfigured scripts for bypassing multi-factor authentication. Kali365 is distributed through compromised software update channels. The FBI has issued a public alert urging organizations to validate software sources.