Most devious and effective recent black hat fraud attack:
https://www.microsoft.com/security/blog/2022/07/12/from-cookie-theft-to-bec-attackers-use-aitm-phishing-sites-as-entry-point-to-further-financial-fraud/More than ten thousand organizations fell victim to a phishing-attack where proxyservers are being abused to be able to circumvent 2FA. Such compromised accounts are abused to commit so-called BEC-fraud (BEC = Business Email Compromise).
One could recieve an email to listen in to a voicemail. When one opens the html-file attached one will get redirected to a phishing site. Office users are being attacked in this way. Do not fall for this fraud scheme.
MS has a survey of all domains used in this fraud. Train your awareness to see if the site is the real McCoy or not. And as allways MS asks you once and you will stay logged in for ever.
Later people are astonished as they can no longer sign on on their MS- or Google account.
Never log-in from an email that you did not initiate yourself.Microsoft to log you out of such sessions could be a remedy.
And MS should log and check on this abused IP-addresses.
polonus