How to create real phishing emails with the help of Office 365

Sent email on Gmail
Webinar Invitation
Same domain invite
CEO invite

Summary

Timeline

  • Issue found and reported to Microsoft on April 28th, 2019
  • Microsoft replied back on May 1st, 2019 and it was determined that the submission does not meet the bar for security servicing. No weakness was identified.

https://www.linkedin.com/in/drorshem/

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

What children can teach us about security

USB PCAP Forensics: Barcode Scanner (NSEC CTF 2021 Writeup, Part 1/3)

The Singular Fraud Index: Analyzing the Industry’s Most Active Fraud Prevention Methods & the Most…

The auto industry faces a data privacy challenge that privacy preserving technology can help fix

5 Best Practices to Strengthen Web App Security

The Giants of the Data Economy and Their Current Hegemony

D-ETF: No centralization risks

Entering the Monolith: how to change your security settings using MetaMask and Etherscan

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Dror Shemesh

Dror Shemesh

https://www.linkedin.com/in/drorshem/

More from Medium

Hacking Microsoft Forms

Frida Hooking Journey Part 2

Objective 1.3 Application Attacks

Future of Pentesting: 5 Tips to Improve App Security