.
Attackers no longer need your password. A new generation of phishing kits steals session tokens after MFA has already been approved, bypassing it completely. At the same time, social engineering attacks are exploiting self-service password reset to take over Entra ID accounts - and a Microsoft Teams setting opened external chat access for millions of tenants by default.
These aren't theoretical risks. They're active attack patterns being used against Microsoft 365 environments right now.
In this session, 4Sight’s Chief Digital Officer and Modern Workplace Lead will unpack what is happening, what it means for your business, and the practical steps you can take to close key vulnerabilities.
We'll cover:
Storm-2949 style attacks - account takeover without cracking a password
Kali365 token-theft phishing kits (first seen April 2026) - why MFA alone is no longer sufficient
Microsoft Teams external chat exposure - the default setting most businesses haven't fixed
4Sight Identity Protect - how we close all three, and what the right level of protection looks like for your business
Live Q&A
Format: Live online session via Microsoft Teams
Cost: Free
Duration: 10am-11am
Date & Time: 24 June 2026
