THE FBI has issued a critical alert regarding the Kali365 phishing platform, which targets enterprise cloud environments and aims to hijack sensitive corporate information. This platform uses a method of token hijacking to bypass multi-factor authentication, allowing cybercriminals to access Microsoft 365 accounts without credentials.
Operating on a subscription model via Telegram, it provides novice attackers with tools such as AI-generated phishing lures and automated templates, making it easier for them to launch campaigns. Victims may receive emails containing device codes from attackers impersonating legitimate services, leading to unauthorized access if the code is entered. The FBI advises immediate reporting of any suspicious logins.