By Krys Shahin
Publication Date: 2026-05-27 23:10:00
The FBI said the phishing tool can let cyberattackers bypass multi-factor authentication on Microsoft 365 accounts.
WASHINGTON — The FBI issued a warning about a new phishing tool being used to gain access to users Microsoft 365 accounts.
The Public Safety Announcement, issued May 21, warned that cyberattackers could bypass multi-factor authentication and get user’s credentials, accessing their Outlook, Teams and OneDrive through a phishing message.
The FBI warned phishing platform Kali365 was first spotted in April and it was primarily sent around on Telegram. The program is a “subscription service for scammers,” according to cybersecurity software company Bitdefender.
Hackers try to access this login by sending a phishing email, which Microsoft itself defines as a fraudulent message designed to look…
