ThreatLocker Cloud Control offers a robust solution to safeguard Microsoft 365 tenants against phishing and token theft by allowing only trusted network connections. By leveraging built-in intelligence, it automatically updates named locations with commonly used IP addresses, effectively blocking unauthorized access even if credentials are compromised. The solution aims to mitigate cyber risks and ensure business continuity.

Attackers are exploiting link wrapping services from companies like Proofpoint and Intermedia to mask malicious URLs that lead to Microsoft 365 phishing pages. By compromising protected email accounts, the threat actor is able to disguise harmful links in phishing campaigns, thus increasing the likelihood of credential theft from victims.