Official Outlook Extension Hacked to Steal Over 4,000 Microsoft Accounts

An official extension for Outlook, initially legitimate, has been hijacked by hackers to steal more than 4,000 Microsoft accounts. The malicious add-in was used as an attack vector, likely exploiting a vulnerability or compromise of the component. No additional technical details (such as the name of the extension, the method of infection, or the exact time period) are specified. The impact involves the theft of Microsoft accounts, with no indication of the data exfiltrated or the consequences for the victims. Source: https://www.it-connect.fr/comment-une-extension-outlook-officielle-a-ete-piegee-pour-derober-4-000-comptes-microsoft/