Technobezz on MSN

Hijacked Outlook add-in stole credentials from over 4,000 Microsoft accounts

Over 4,000 Microsoft accounts compromised by a malicious Outlook add-in that hijacked an abandoned scheduling tool to steal credentials via a phishing kit..
CSO Online

‘Dead’ Outlook add-in hijacked to phish 4,000 Microsoft Office Store users

A hacker noticed the change in its status and hijacked the dead add-in and its 4.71-star rating to conduct a phishing ...

Popular Microsoft Outlook add-in hijacked to try and steal user accounts

A Microsoft Outlook add-in was abandoned and taken over by hackers, who used it to collect email accounts and banking data.
The Hacker News

Malicious VS Code AI Extensions with 1.5 Million Installs Steal Developer Source Code

Cybersecurity researchers have discovered two malicious Microsoft Visual Studio Code (VS Code) extensions that are advertised as artificial intelligence (AI)-powered coding assistants, but also harbor ...
GitHub

A handy tool to manage your office addins locally, you can use it for addin development or deploy your addins for your clients out of AppSource.

NOTE: currently only support windows. > ./oaloader.exe --help Usage: [OPTIONS] COMMAND [ARGS]... Manage your office addins locally. Options: --version Show the version and exit. -l, --level TEXT The ...
The Hacker News

Filling the Most Common Gaps in Google Workspace Security

Security teams at agile, fast-growing companies often have the same mandate: secure the business without slowing it down. Most teams inherit a tech stack optimized for breakneck growth, not resilience ...