security: Phishing actors exploit complex routing and misconfigurations to spoof domains
Microsoft Security Blog
2026-01-06
Microsoft reports that threat actors are abusing complex mail routing scenarios and misconfigured anti‑spoof protections to send phishing emails that are crafted to look like internally sent messages.