Hackers used malicious Office 365 apps to gain access to customer accounts, which they later used to orchestrate BEC attacks.
Article Link: https://www.zdnet.com/article/microsoft-seizes-six-domains-used-in-covid-19-phishing-operations/#ftag=RSSbaffb68