Impersonation attacks possible with novel Microsoft Bookings bug

Such an issue stems from Microsoft Bookings enabling the creation of Shared Booking Pages by default for users with proper Microsoft 365 licenses and automated Booking Page name-based email address generation, which could be exploited to create legitimate-looking email addresses for malicious activity, according to a report from Cyberis.

Article Link: Impersonation attacks possible with novel Microsoft Bookings bug | SC Media