CSO Online

Microsoft warns of a surge in phishing attacks exploiting email routing gaps

Threat actors are abusing misconfigured MX records and weak DMARC/SPF policies to make phishing emails look internal, ...
Cybernews

Your domain, their bait: Microsoft warns businesses on internal email phishing loopholes

Microsoft has witnessed a surge in the use of this tactic since May 2025, as part of opportunistic campaigns targeting organizations across multiple industries and verticals.
CSOonline

Don’t trust that email: It could be from a hacker using your printer to scam you

New research reveals a simple way threat actors are using Microsoft 365 Direct Send to phish employees, without even having to steal credentials. Printers and scanners are increasingly becoming ways ...