When checking the URL isn’t enough: phishing via the Microsoft identity platform
One of the most common pieces of anti-phishing advice is to double-check the website’s domain name before providing your credentials. Typically, a fraudulent domain stands…