Security · Full coverage
FBI Warns of New Kali365 Phishing Attack Bypassing Microsoft 365 Two-Factor Authentication
How 2 Israeli newsrooms covered this story — translated into English and compared side by side.
100% right-leaning
Right 2
First reported by Now 14 · 5 hours ago
What happened
The FBI warns of Kali365, a new phishing method targeting Microsoft 365 accounts that bypasses two-factor authentication by tricking users into approving device codes, enabling attackers to access sensitive data and impersonate users. Microsoft supports FBI guidance and urges caution.
- 01FBI warns of Kali365 phishing targeting Microsoft 365, bypassing two-factor authentication.
- 02Attackers trick users into approving device codes via fake requests and genuine Microsoft login pages.
- 03Access tokens gained allow entry to Outlook, Teams, OneDrive without passwords.
- 04Attackers can steal sensitive data and impersonate users for fraud, especially in small businesses.
- 05Users should avoid entering codes from unexpected requests and use official Microsoft sites or apps only.
- 06FBI advises organizations to limit device code logins and strengthen authentication policies.
Summary translated & synthesized from the sources below by baba. Read each original for the full report.
Full coverage · 2 outlets
The same event, reported separately by each newsroom. Open a few to compare what each emphasizes — and what they leave out.
Related stories
National Cyber Directorate warns of Microsoft-themed phishing waveJun 14, 2026New iPhone theft scam uses fake Apple pages to unlock stolen devicesJun 12, 2026FBI and Google dismantle Chinese phishing network that used AI to evade defensesJun 16, 2026WhatsApp Adds New Safeguards Against Account Takeovers and Stranger Scams4 days agoReused Passwords Exposed in Massive Fortinet Credential Cache6 days agoFBI warns advanced drones could let attackers strike from afar in the U.S.3 days ago
