Evidence45%Reported
FactIn Progress·April 7, 2026
Large-Scale Microsoft Device Code Phishing Campaign Compromising Hundreds of Organizations Daily
Microsoft disclosed that since March 15, 2026, 10 to 15 distinct AI-powered device code phishing campaigns launch every 24 hours, each targeting hundreds of organizations and bypassing MFA to steal financial data from Microsoft 365 accounts.
Evidence Strength
Evidence45%Reported
Based on original reporting
Single publisher source
Insights
First tracked
April 7, 2026
Last updated
April 7, 2026
Sources
1 source
Related Developments
Federal Cybersecurity Evaluators Reportedly Dismissed Microsoft 365 GCC High as Inadequate in 2024Microsoft Commits to Working Constructively with CMA on Cloud and Business Software ConcernsProton Launches Meet Video Conferencing Service Competing with Microsoft TeamsUK CMA Launches Strategic Market Status Investigation into Microsoft's Business SoftwareProton Launches Privacy-First Workspace Alternative to Microsoft 365 and Google Workspace
Sources (1)
Source Timeline
Evidence Strength
Evidence45%Reported
Based on original reporting
Single publisher source
Insights
First tracked
April 7, 2026
Last updated
April 7, 2026
Sources
1 source
Related Developments
Federal Cybersecurity Evaluators Reportedly Dismissed Microsoft 365 GCC High as Inadequate in 2024Microsoft Commits to Working Constructively with CMA on Cloud and Business Software ConcernsProton Launches Meet Video Conferencing Service Competing with Microsoft TeamsUK CMA Launches Strategic Market Status Investigation into Microsoft's Business SoftwareProton Launches Privacy-First Workspace Alternative to Microsoft 365 and Google Workspace