Attackers are sending convincing emails that mimic Microsoft password-expiry notices and lead to fake login pages designed to steal credentials and session cookies — giving them access even after you change your password.
Who is affected
Any business using Microsoft 365 or Outlook — especially healthcare, legal, and finance teams in Florida who rely on email for client communication.
Why it matters
A single compromised mailbox can expose client data, trigger wire-fraud scams, and spread phishing to your entire contact list within minutes.
Recommended actions
- Enable multi-factor authentication (MFA) on every M365 account — not just admins.
- Use Conditional Access policies to block sign-ins from unexpected countries or devices.
- Train staff to verify sender addresses and never enter credentials from email links.
- Review recent sign-in logs in the Microsoft Entra admin center for unfamiliar locations.
Official reference
Need help implementing these protections?
ITNS provides managed IT, cybersecurity, and compliance support across Florida. Tell us about your environment — we will help you prioritize what matters most for your team.
Disclaimer: This advisory is for general awareness only and does not constitute legal or compliance advice. Every environment is different — contact ITNS for guidance specific to your business.