FBI issues urgent Kali365 security warning for Teams, Outlook, OneDrive users
The FBI has issued an urgent warning regarding a phishing campaign targeting Microsoft 365 users that bypasses multi-factor authentication.
🌍 Cross-language spread
This story first appeared in 🇩🇪 German coverage — 3.9 hours before PULSE detected it in English news.
Detected by matching proper nouns and figures that survive translation. Times reflect when each edition's coverage was first indexed.
Velocity
How fast coverage is spreading — measured hourly from article rate × source diversity. How this works →
The brief
The FBI has issued an urgent security warning regarding a phishing campaign identified as "Kali365." This threat specifically targets users of Microsoft 365 applications, including Teams, Outlook, and OneDrive. Coverage indicates the attack utilizes a method known as device code phishing to compromise accounts.
Reporting from outlets including NewsNation, The Hill, and Fast Company emphasizes that this campaign bypasses multi-factor authentication. CyberSecurityNews and WeLiveSecurity note the attack leverages legitimate login flows and does not require stealing user passwords to gain access.
Coverage does not yet specify the exact scale of the impact or the specific threat actors behind the campaign. While some headlines mention guidance on safety, the specific mitigation steps are not detailed in the provided summaries.
Synthesized by PULSE from the headlines below under a strict no-invention contract. ✓ fact-checked: all claims supported by sources Updated 2h ago.
Quick answers
What is the Kali365 campaign?
It is a phishing scam targeting Microsoft 365 users that the FBI has warned can bypass multi-factor authentication.
How does this attack bypass security?
Coverage describes it as a device code phishing campaign that uses legitimate login flows rather than stealing passwords.
Which services are affected?
The warning specifically targets users of Microsoft 365, including Teams, Outlook, and OneDrive.
Coverage (10)
- FBI Warns Microsoft 365 Users About 'Kali365' Phishing Scam That Can Bypass MFA IBTimes India · 1d ago
- FBI warns Microsoft 365 users of phishing scam. How to stay safe AOL.com · 1d ago
- Microsoft 365 Device Code Phishing Campaign Bypasses Password Theft With Legitimate Login Flow CyberSecurityNews · 1d ago
- FBI issues urgent Kali365 security warning for Teams, Outlook, OneDrive users NewsNation · 1d ago
- Hackers Are Bypassing MFA to Compromise Accounting Firm Microsoft 365 Accounts CPA Practice Advisor · 1d ago
- FBI Kali365 Security Warning Over Microsoft 365 Phishing Techloy · 1d ago
- FBI warns of Kali365 phishing scam targeting Microsoft 365 users upi.com · 1d ago
- EvilTokens: A phishing attack that doesn’t steal your password WeLiveSecurity · 1d ago
- FBI warns Microsoft Teams, Outlook, OneDrive users of phishing scam Fast Company · 1d ago
- FBI issues urgent Kali365 security warning for Teams, Outlook, OneDrive users The Hill · 1d ago
Topics
Related trends
Ransomware gang abuses Microsoft Teams relays to hide malicious traffic
Ransomware group DragonForce exploits Microsoft Teams’ own infrastructure to evade detection in cyberattacks
Cybersecurity vets protest 'dangerous' US government ban on Anthropic's most powerful models
Cybersecurity professionals are protesting a US government ban on Anthropic's Claude Fable and Mythos AI models, sparking high-level meetings to seek a truce.
New attack turned Microsoft 365 Copilot into 1-click data theft tool
Microsoft has patched a critical vulnerability in 365 Copilot that enabled one-click data theft.
Surge in scams as fraudsters use AI to target people
Financial fraud losses are reaching multi-year highs as the integration of AI tools by criminals facilitates a surge in targeted consumer scams.
Anthropic scrambles after Trump administration freezes its top AI models
US government blocks Anthropic’s most advanced AI models, sending shockwaves through tech and cybersecurity sectors
I pay $20 a month for ChatGPT
Anthropic's Fable 5 model launch sparks debate over performance, restrictive guardrails, and competitive AI landscape.