The FBI warns that Kali365 is a Telegram-based phishing-as-a-service platform used to capture OAuth tokens and bypass MFA to gain unauthorized access to Microsoft 365 accounts. The service is enabling large-scale attacks against Outlook, Teams, and OneDrive by using branded phishing lures, automated campaigns, and reusable access tokens. #Kali365 #Microsoft365 #Telegram
Keypoints
- Kali365 is a Telegram-based phishing-as-a-service platform.
- It captures OAuth tokens to bypass MFA on Microsoft 365 accounts.
- Attackers use fake login requests and legitimate Microsoft verification pages.
- Captured tokens allow access to Outlook, Teams, and OneDrive without passwords.
- The platform offers branded phishing kits, multiple tiers, and reusable tokens.
Read More: https://therecord.media/fbi-warns-of-kali365-phishing-attacks