National Cyber Warfare Foundation (NCWF)

Exploitation of Microsoft 365 Direct Send to Deliver Phishing Emails as Internal Users
0 user ratings		2025-06-27 19:13:33
milo
Red Team (CNA)

A sophisticated phishing campaign targeting over 70 organizations, predominantly in the US, has been uncovered by Varonis’ Managed Data Detection and Response (MDDR) Forensics team. This campaign, active since May 2025, exploits a lesser-known feature of Microsoft 365 called Direct Send, which allows devices and applications within a tenant to send emails without authentication. Designed […]


The post Exploitation of Microsoft 365 Direct Send to Deliver Phishing Emails as Internal Users appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.



Aman Mishra

Source: gbHackers
Source Link: https://gbhackers.com/exploitation-of-microsoft-365-direct-send-to-deliver-phishing-emails/

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Red Team (CNA)


Copyright 2012 through 2025 - National Cyber Warfare Foundation - All rights reserved worldwide.