Dark Reading: W3LL Gang Compromises Thousands of Microsoft 365 Accounts

To protect themselves, enterprises need to take a layered approach to cybersecurity, says David Raissipour, chief technology and product officer at Mimecast.

"They must monitor login activity for anomalies related to compromised accounts," he says. "They must regularly reset passwords and enforce MFA (even with this threat posing new challenges). Finally, they must train their employees to question unusual requests, even if they are seemingly from trusted sources."