Information security
fromComputerworld
1 day ago'Dead' Outlook add-in hijacked to phish 4,000 Microsoft Office Store users
Microsoft-signed add-ins can be hijacked via orphaned subdomains, allowing attackers to serve phishing content and gain permissions like reading and modifying user emails.