Post #8405

Researchers found the first malicious Microsoft Outlook add-in used in real attacks. Hackers hijacked an abandoned calendar plug-in, claimed its expired domain, and served a fake Microsoft login—stealing 4,000+ credentials. The add-in still had mailbox read/write permissions. 🔗 Learn how... → https://thehackernews.com/2026/02/first-malicious-outlook-add-in-found.html