Microsoft investigates Office Apps, Teams file access issues
… Earlier today, Microsoft addressed another incident that blocked customers from setting up multi-factor authentication MFA on some accounts or from accessing the MySignIn service. …
Search
Microsoft fixes outage affecting MFA setup, MySignIn service
… "We're investigating an issue where some users may be unable to setup MFA or access the http://mysignins.microsoft.com website," the company's Microsoft 365 Status account shared on Twitter earlier today. …
FBI warns of Kali365 phishing service targeting Microsoft 365 accounts
… Once the victim enters the code and completes MFA, Microsoft issues an OAuth access token that grants the threat actor full access to their account without requiring them to solve any MFA challenges. …
New Windows 'MiniPlasma' zero-day exploit gives SYSTEM access, PoC released
… In our test, we used a standard user account, and after running the exploit, it opened a command prompt with SYSTEM privileges, as shown in the image below. …
Tycoon2FA hijacks Microsoft 365 accounts via device-code phishing
… After this step, Microsoft issues OAuth access and refresh tokens to the attacker-controlled device. …