FBI warns Kali365 phishing targets Microsoft 365
Analysis based on 8 articles · First reported May 27, 2026 · Last updated May 28, 2026
The Kali365 phishing scam directly impacts the cybersecurity industry, increasing demand for robust security solutions and services. For Microsoft>>>, the widespread compromise of its Microsoft>>> products could lead to a decline in user trust and potentially affect its stock price if not addressed effectively, as millions of businesses and individuals rely on these services.
The United States — Federal Bureau of Investigation>>> has issued an urgent warning about Kali365, a rapidly spreading phishing-as-a-service scam targeting Microsoft>>> accounts, including Microsoft Outlook>>>, Microsoft>>>, and OneDrive>>>. This scam bypasses multi-factor authentication by tricking users into entering a device code on a genuine Microsoft>>> verification page, which then grants attackers OAuth>>> tokens for persistent access. The Kali365 platform lowers the barrier to entry for cybercriminals by providing AI-generated phishing templates and automated campaign tools. Once access is gained, attackers can engage in data theft, fraud, extortion, and ransomware attacks. The United States — Federal Bureau of Investigation>>> recommends implementing Conditional Access policies in Microsoft>>>, exercising vigilance with unsolicited communications, and reporting incidents to the United States — Internet Crime Complaint Center>>>. The scam has been reported in North American Cobalt Inc.>>> and Europe>>> across various sectors.
Set up alerts, explore entity relationships, search across thousands of events, and build custom intelligence feeds.
Open Dashboard