security: Phishing actors exploit complex routing and misconfigurations to spoof domains

Threat actors are exploiting complex mail routing and misconfigured anti-spoof protections to send phishing emails that appear to come from internal senders.

• Source: Microsoft Security Blog