Cybersecurity researchers from Koi Security have identified the first known malicious Microsoft Outlook add-in in active circulation. This supply chain attack involved an unknown perpetrator who took control of a domain linked to a defunct legitimate add-in, creating a counterfeit Microsoft login page. The attack resulted in the theft of over 4,000 user credentials. This incident highlights vulnerabilities in add-in security and the potential for exploitation.
Want More Context? 🔎
Loading PerspectiveSplit analysis...
