New phishing kits target Microsoft 365 accounts, evade MFA
Two new phishing kits named Jalisco and OmegaLord have been identified targeting Microsoft 365 accounts. These kits employ techniques designed to bypass multi-factor authentication (MFA), increasing the risk of unauthorized access. The phishing campaigns specifically aim to steal credentials from users of Microsoft 365 services. No specific affected software versions are indicated. There is no evidence of known exploits in the wild at this time. The overall severity of this threat is assessed as medium.
AI Analysis
Technical Summary
The threat involves two newly discovered phishing kits, Jalisco and OmegaLord, which target Microsoft 365 accounts by using methods that circumvent MFA protections. These kits facilitate credential theft by deceiving users into providing their login information despite MFA being enabled. The attack vector is phishing, relying on social engineering rather than exploiting software vulnerabilities. No patches or vendor advisories are referenced, and the threat does not pertain to a specific software version but rather to user accounts on Microsoft 365.
Potential Impact
Successful phishing attacks using these kits can result in unauthorized access to Microsoft 365 accounts even when MFA is enabled, potentially leading to data compromise, account takeover, and further exploitation within affected organizations. The ability to evade MFA reduces the effectiveness of this common security control, increasing the risk to user credentials and associated resources.
Mitigation Recommendations
No official patches or fixes are available as this is a phishing threat rather than a software vulnerability. Organizations should enhance user awareness training focused on phishing recognition and implement additional protective measures such as conditional access policies, anomaly detection, and risk-based authentication where possible. Monitoring for suspicious login activity and employing email filtering to block phishing attempts are recommended. Since this threat targets user behavior, technical controls combined with user education are key mitigations.
New phishing kits target Microsoft 365 accounts, evade MFA
Description
Two new phishing kits named Jalisco and OmegaLord have been identified targeting Microsoft 365 accounts. These kits employ techniques designed to bypass multi-factor authentication (MFA), increasing the risk of unauthorized access. The phishing campaigns specifically aim to steal credentials from users of Microsoft 365 services. No specific affected software versions are indicated. There is no evidence of known exploits in the wild at this time. The overall severity of this threat is assessed as medium.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The threat involves two newly discovered phishing kits, Jalisco and OmegaLord, which target Microsoft 365 accounts by using methods that circumvent MFA protections. These kits facilitate credential theft by deceiving users into providing their login information despite MFA being enabled. The attack vector is phishing, relying on social engineering rather than exploiting software vulnerabilities. No patches or vendor advisories are referenced, and the threat does not pertain to a specific software version but rather to user accounts on Microsoft 365.
Potential Impact
Successful phishing attacks using these kits can result in unauthorized access to Microsoft 365 accounts even when MFA is enabled, potentially leading to data compromise, account takeover, and further exploitation within affected organizations. The ability to evade MFA reduces the effectiveness of this common security control, increasing the risk to user credentials and associated resources.
Mitigation Recommendations
No official patches or fixes are available as this is a phishing threat rather than a software vulnerability. Organizations should enhance user awareness training focused on phishing recognition and implement additional protective measures such as conditional access policies, anomaly detection, and risk-based authentication where possible. Monitoring for suspicious login activity and employing email filtering to block phishing attempts are recommended. Since this threat targets user behavior, technical controls combined with user education are key mitigations.
Technical Details
- Article Source
- {"url":"https://www.bleepingcomputer.com/news/security/new-phishing-kits-target-microsoft-365-accounts-evade-mfa/","fetched":true,"fetchedAt":"2026-07-14T13:17:36.376Z","wordCount":851}
Threat ID: 6a5636f068715ace438d864e
Added to database: 07/14/2026, 13:17:36 UTC
Last enriched: 07/14/2026, 13:17:55 UTC
Last updated: 07/14/2026, 18:01:28 UTC
Views: 8
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.