Microsoft Warns of Sophisticated Phishing Campaign Targeting US Organizations

Microsoft has issued a warning regarding a sophisticated phishing campaign targeting organizations in the United States. The attackers are sending malicious emails that impersonate legitimate communications, often claiming to contain a conduct report. These emails lure recipients to a fake Microsoft phishing website designed to steal credentials. The campaign utilizes an "in-the-middle" (AitM) approach to bypass security measures and compromise user accounts.