All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

Phishing-as-a-Service Platform Kali365 Expands Targets Beyond Microsoft 365 to AWS, Okta, and Russian Services

By

Jai Vijayan

5h ago· 6 min readenNews
Bagel score 100 of 100
100/100
Golden Brown
Bagelometer

An everything bagel for the brain. Substantive, layered, well-seasoned.

Score100TypenewsSentimentnegative

Summary

Kali365, a phishing-as-a-service platform originally focused on bypassing MFA on Microsoft 365 accounts, has expanded its targeting capabilities to include AWS, Okta, Xerox DocuShare, and several Russian online services. Arctic Wolf's report details how the platform has evolved into a broader account-compromise tool targeting digital identities across multiple platforms, with notable additions including MAX Messenger and other Russian services.

Key quotes

· 2 pulled
The operators of Kali365, a phishing-as-a-service platform that drew considerable attention for helping attackers bypass multifactor authentication (MFA) on Microsoft 365 accounts, have significantly broadened both their capabilities and their target list.
Arctic Wolf described Kali365 as evolving from a purely Microsoft-focused phishing kit to a broader account-compromise platform that targets digital identities across AWS, Okta, Xerox DocuShare, and several Russian online services.
Snippet from the RSS feed
From solely targeting Microsoft 365, the phishing-as-a-service platform now targets AWS, Okta, and Russian platforms.

You might also wanna read

How a botnet abused my open source project's cloud version to phish 14,000 people

The author, who runs an open source project management tool called Kaneo, discovered that a botnet had abused the hosted cloud version of th

andrej.sh·5d ago

Crates.io Targeted by Phishing Attempt Following npm Supply Chain Attack

The article discusses a phishing attempt targeting crates.io, the main public repository for Rust packages, following a recent npm supply ch

fasterthanli.me·8mo ago

China-Based Phishing Groups Shift to Fake E-commerce Sites and Tax Refund Scams

China-based phishing groups are shifting tactics from traditional SMS scams about packages and toll fees to new offerings targeting holiday

krebsonsecurity.com·6mo ago

Shira: A Phishing Awareness Training Platform for Teams and Individuals

Shira is a cybersecurity training platform that helps organizations and individuals build skills to identify and defeat phishing attacks. It

shira.app·12d ago

Technical Analysis of CVE-2025-10035: A CVSS 10.0 Vulnerability in Fortra GoAnywhere MFT

watchTowr Labs analyzes CVE-2025-10035, a critical CVSS 10.0 vulnerability in Fortra's GoAnywhere MFT (managed file transfer) solution. The

labs.watchtowr.com·8mo ago

Kaspersky Researchers Document New Infection Chains and IoCs in Notepad++ Supply Chain Attack

Kaspersky GReAT experts discovered previously undocumented infection chains used in the Notepad++ supply chain attack that occurred from Jun

securelist.com·3mo ago