Updated
Updated · WJXT News4JAX · Jul 15
FBI Warns Kali365 Can Breach Microsoft 365 Accounts as Florida Phishing Losses Top $12 Million
Updated
Updated · WJXT News4JAX · Jul 15

FBI Warns Kali365 Can Breach Microsoft 365 Accounts as Florida Phishing Losses Top $12 Million

1 articles · Updated · WJXT News4JAX · Jul 15

Summary

  • Florida residents reported more than $12 million in phishing losses in 2025, up sharply from about $4 million a year earlier, as the FBI flagged a new threat aimed at Microsoft 365 users.
  • Kali365 targets Outlook, Teams and OneDrive accounts by capturing access tokens, letting attackers bypass multi-factor authentication without needing a victim’s password.
  • FBI Tampa said the platform shows how phishing tactics keep evolving and urged organizations to strengthen workforce training, password standards and use of physical hardware tokens for MFA.
  • The FBI and IC3 also told users to avoid unsolicited links and attachments, verify sender domains, go directly to service websites, and quickly report incidents at ic3.gov to aid investigations and possible fund recovery.

Insights

Should authorities target individual hackers or the crime-as-a-service platforms that enable thousands of attacks?
As AI crafts flawless phishing scams, is human vigilance now an obsolete defense strategy?
If even advanced multi-factor authentication can be bypassed, what truly makes a digital account secure in 2026?