Microsoft’s threat analysts have uncovered a large-scale, multi-phase phishing campaign that uses stolen credentials to register devices onto the target’s network and use them to distribute phishing emails.
Source
Microsoft warns of multi-stage phishing campaign leveraging Azure AD
