Yo, check this out, folks.<br> <br> So, the FBI has flagged this Kali365 phishing kit, and it’s getting seriously aggressive. Remember how it was primarily focused on hitting Microsoft 365? Well, that's just the starting lineup now. This thing has officially expanded its playground to target AWS, Okta, and even some Russian platforms.<br> <br> The kicker here is *how* it’s doing it: it's relying on device code phishing. This isn't just some basic email trick anymore; they're getting deep into the infrastructure layer by exploiting device code vulnerabilities. That means the scope of potential damage just went way up. If you use any of those services, you need to seriously rethink your MFA and device security right now.<br> <br> Honestly, it’s pretty slick that they’re pivoting beyond just the big office suites. Targeting cloud providers like AWS and identity platforms like Okta shows they understand that the real crown jewels in modern infrastructure are the cloud and the identity layer, not just the email. This is a big deal for anyone managing multi-cloud environments.<br> <br> We need to start auditing our device code security immediately, not just our email filters.<br> <br> Source: https://www.darkreading.com/cyber-risk/fbi-flagged-phishing-kit-kali365-expands-its-reach