New phishing kits target Microsoft 365 accounts, evade MFA

Summary

Two new phishing kits, named Jalisco and OmegaLord, are actively targeting Microsoft 365 accounts. These kits employ advanced techniques designed to bypass multi-factor authentication (MFA), posing a significant threat to user credentials and sensitive data.

IFF Assessment

FOE

The emergence of new phishing kits that can bypass MFA represents a direct threat to defenders by making it harder to protect user accounts from compromise.

Defender Context

Defenders need to be aware of these evolving phishing tactics that specifically target cloud-based services like Microsoft 365 and can circumvent MFA. Organizations should ensure their users are educated about sophisticated phishing attempts and consider implementing additional layers of security beyond standard MFA, such as conditional access policies or advanced threat detection solutions.

Read Full Story →