DEBULL: This Phishing Kit Hijacks Microsoft 365 Device Code Flow to Bypass MFA
Discover how DEBULL abuses Microsoft 365 device code flow to bypass MFA, and learn what admins can lock down to reduce the risk. The post DEBULL: This Phishing Kit Hijacks Microsoft 365 Device Code…
Read the full articleYou might also wanna read
FBI warns of Kali365 phishing kit that bypasses multifactor authentication on Microsoft 365
Regulators pushed banks toward multifactor authentication. A new phishing-as-a-service kit, flagged by the FBI, is built to slip right past
Microsoft 365 device code phishing campaign abuses legitimate login flow to target accounts
A Microsoft 365 device code phishing campaign observed in late June and early July 2026 used collaboration-themed lures and a compromised Cr
hendryadrian.com·2d agoDEBULL Tooling Abuses Microsoft Device-Code Flow to Target M365 Accounts
A Microsoft 365 device code phishing campaign has been observed leveraging collaboration-themed lures to take control of victim accounts bet
Microsoft Device Code Phishing Campaign Targets M365 Accounts
New phishing campaign exploits Microsoft device code flow to access M365 accounts. Learn how attackers bypass MFA.
FBI warns Kali365 phishing scam bypasses Microsoft 365 multi-factor authentication
The FBI is warning the public about a new phishing scam called Kali365 that allows hackers to break into Microsoft 365 accounts.

The New Microsoft 365 Scam Defeats MFA; Proves Training Beats Tech
Every few months a new Microsoft 365 scam comes along that quietly changes the rules. This one has earned an FBI warning, and it deserves th

Comments
Sign in to join the conversation.
No comments yet. Be the first.