Confusion reigns as phishers abuse Exchange Online Direct Send

An email feature for Microsoft’s Exchange Online that allows unauthenticated message submissions for mail deliveries is causing ongoing customer concern and confusion as attackers abuse it for targeted phishing. Microsoft calls it Direct Send – “used for sending emails directly to your mailboxes from a domain you own without any user or on-premises connector authentication.” “Direct […]