Microsoft 365 Direct Send Abused for Phishing

Thread starter Brownie2019
Start date Jun 27, 2025

Brownie2019

Level 23

Thread author

Verified

Well-known

Forum Veteran

Jun 27, 2025

#1

Content source: https://www.securityweek.com/microsoft-365-direct-send-abused-for-phishing/

Hackers are abusing the Microsoft 365 Direct Send feature to deliver phishing emails that bypass email security controls.
Microsoft 365 Direct Send has been abused in a phishing campaign to deliver spoofed messages that appear to originate from within the victim’s organization, Varonis warns.

Read more here:

www.securityweek.com

Microsoft 365 Direct Send Abused for Phishing

Hackers are abusing the Microsoft 365 Direct Send feature to deliver phishing emails that bypass email security controls.

www.securityweek.com

Reactions: Parkinsond

You must log in or register to reply here.

You may also like...

Hackers Exploit Microsoft 365’s Direct Send Feature for Internal Phishing Attacks
- Started by Brownie2019
- Aug 1, 2025
- Replies: 0
News Archive
Hackers Weaponize Active Directory Federation Services and office.com to Steal Microsoft 365 logins
- Started by Brownie2019
- Aug 20, 2025
- Replies: 1
News Archive
iCloud Calendar abused to send phishing emails from Apple’s servers
- Started by Gandalf_The_Grey
- Sep 8, 2025
- Replies: 0
News Archive
Possible CryptoChameleon Social Engineering Campaign Targeting LastPass Customers
- Started by Gandalf_The_Grey
- Oct 25, 2025
- Replies: 1
News Archive
Scams & Phishing News New Google-Themed Phishing Wave Hits Over 3,000 Global Organisations
- Started by Brownie2019
- Dec 30, 2025
- Replies: 2
Security News

Share:

Facebook X Bluesky LinkedIn Reddit WhatsApp Email Link