Microsoft says a phishing campaign targeted 10K+ organizations since September 2021 by hijacking Office 365’s authentication process even on accounts with MFA (Dan Goodin/Ars Technica)

Dan Goodin / Ars Technica:
Microsoft says a phishing campaign targeted 10K+ organizations since September 2021 by hijacking Office 365’s authentication process even on accounts with MFA  —  Campaign that steals email has targeted at least 10,000 organizations since October.  —  On Tuesday, Microsoft detailed …