Kali365, which was first observed in April, abuses legitimate Microsoft device authorization pages to grant persistent access to cybercriminal-controlled applications.
First seen on cyberscoop.com
Jump to article: cyberscoop.com/fbi-phishing-kali365-microsoft365-access-tokens/
