Cybercriminals are using new tricks to target Microsoft 365 users, posing as internal IT staff and calling employees to walk them through a fake passkey enrollment process. This vishing (voice-phishing) campaign is designed to trick staff into giving...