Microsoft Reveals Large-Scale Phishing Campaign Targeting Over 35,000 Users

Microsoft disclosed a large-scale phishing campaign that targeted over 35,000 users across more than 13,000 organizations in 26 countries between April 14 and 16, 2026. The attack used code-of-conduct-themed lures and legitimate email services to redirect victims to attacker-controlled domains, where authentication tokens were stolen. The multi-stage campaign leveraged credential theft techniques but did not specify the exact threat actor or affected industries. No CVE IDs or additional technical vulnerabilities were mentioned in the disclosure. The primary impact involved unauthorized access to user credentials and potential follow-on exploitation.