Snapshot from Jun 09, 2026 at 07:00 UTC. For live data and tracking: View Live
Regulatory phishing scam

FBI warns Kali365 phishing targets Microsoft 365

Analysis based on 8 articles · First reported May 27, 2026 · Last updated May 28, 2026

Sentiment
-70
Attention
6
Articles
8
Market Impact
Direct
Live prominence charts, article sentiment distribution, and event development timeline available on the Ergen Dashboard

The Kali365 phishing scam directly impacts the cybersecurity industry, increasing demand for robust security solutions and services. For Microsoft>>>, the widespread compromise of its Microsoft>>> products could lead to a decline in user trust and potentially affect its stock price if not addressed effectively, as millions of businesses and individuals rely on these services.

Technology Cybersecurity Business Services

The United States — Federal Bureau of Investigation>>> has issued an urgent warning about Kali365, a rapidly spreading phishing-as-a-service scam targeting Microsoft>>> accounts, including Microsoft Outlook>>>, Microsoft>>>, and OneDrive>>>. This scam bypasses multi-factor authentication by tricking users into entering a device code on a genuine Microsoft>>> verification page, which then grants attackers OAuth>>> tokens for persistent access. The Kali365 platform lowers the barrier to entry for cybercriminals by providing AI-generated phishing templates and automated campaign tools. Once access is gained, attackers can engage in data theft, fraud, extortion, and ransomware attacks. The United States — Federal Bureau of Investigation>>> recommends implementing Conditional Access policies in Microsoft>>>, exercising vigilance with unsolicited communications, and reporting incidents to the United States — Internet Crime Complaint Center>>>. The scam has been reported in North American Cobalt Inc.>>> and Europe>>> across various sectors.

stock
Microsoft>>> is the primary target of the Kali365 phishing scam, with its applications like Microsoft Outlook, Teams, and OneDrive being compromised. The scam bypasses its multi-factor authentication, posing a significant security threat to its users and potentially impacting its reputation.
Importance 100 Sentiment -60
govactor
The United States — Federal Bureau of Investigation>>> issued an urgent warning about the Kali365 phishing scam, providing details on how it works and recommendations for protection and reporting. This action highlights their role in cybersecurity and protecting the public.
Importance 90 Sentiment 0
oth
Microsoft Outlook>>> is one of the key Microsoft>>> applications targeted by the Kali365 phishing scam, allowing cybercriminals to access emails and potentially sensitive information. This direct compromise affects its users' security.
Importance 90 Sentiment -60
oth
OneDrive>>> is another Microsoft>>> application vulnerable to the Kali365 phishing scam, enabling attackers to access and potentially steal files. This poses a risk to data integrity and privacy for its users.
Importance 90 Sentiment -60
stock
Microsoft>>> is affected by the Kali365 scam, allowing cybercriminals to infiltrate communication channels and potentially impersonate employees. This compromises secure collaboration and internal communications.
Importance 90 Sentiment -60
stock
Microsoft>>> is the parent company of Microsoft>>>, whose products are being exploited by the Kali365 scam. The company's security measures are being bypassed, which could lead to reputational damage and a need for enhanced security protocols.
Importance 80 Sentiment -50
oth
OAuth>>> tokens are the digital keys captured by the Kali365 scam, allowing attackers to bypass multi-factor authentication and gain persistent access to Microsoft>>> accounts. This exploitation highlights a vulnerability in how these tokens are secured.
Importance 70 Sentiment -40
govactor
The United States — Internet Crime Complaint Center>>> is the recommended body for individuals to file complaints if they suspect they have been targeted by the Kali365 phishing attack. It serves as a crucial reporting and tracking mechanism for cybercrime.
Importance 60 Sentiment 0
stock
Microsoft>>> is where the United States — Federal Bureau of Investigation>>> suggests organizations implement 'Conditional Access' policies to block device code flow, a key vulnerability exploited by Kali365. This product is central to implementing protective measures.
Importance 50 Sentiment -40
priv
North American Cobalt Inc.>>> is one of the regions where thousands of Kali365 attacks have been reported, indicating a broad geographical impact of the scam. This highlights the widespread nature of the threat.
Importance 40 Sentiment -30
loc
Europe>>> is another region where the Kali365 phishing scam has been actively targeting organizations, demonstrating the international reach of this cyber threat. This indicates a global concern for cybersecurity.
Importance 40 Sentiment -30
priv
Telegram>>> is mentioned as a platform through which the Kali365 phishing-as-a-service platform has been distributed. Its role is indirect, serving as a channel for the scam's proliferation.
Importance 30 Sentiment -10
oth
CyberScoop>>> is a security researcher mentioned as reporting that the Kali365 phishing kit can target any Microsoft>>> user. Its role is to provide information and analysis on cybersecurity threats.
Importance 10 Sentiment 0
priv
Instructure>>> was affected by a separate hacking group, Shiny Hunters, mentioned as an example of broader cyber attacks. Its inclusion provides context on the general threat landscape but is not directly involved in the Kali365 scam.
Importance 5 Sentiment -10
mil
ShinyHunters>>> is a hacking group mentioned in the context of other cyber attacks, specifically affecting Instructure>>>. It serves as an example of the broader cyber threat landscape, not directly related to Kali365.
Importance 5 Sentiment -80
NEWSDESK
Track this event live

Set up alerts, explore entity relationships, search across thousands of events, and build custom intelligence feeds.

Open Dashboard

About Ergen

Ergen is a news intelligence platform that converts raw news articles into structured data. It tracks events, entities, and the relationships between them, with sentiment and attention metrics derived from thousands of articles. Pages on this site are daily static snapshots from the platform's live database. For real-time tracking, search, and alerts, the full dashboard is at app.ergen.ai.