Avanan's research into how Outlook displays Active Directory details even on spoofed emails was featured in Dark Reading. By prioritizing productivity over security, hackers have found some lapses in Outlook that can make social engineering campaigns more effective. As Dark Reading writes:
A lower-level employee with access to corporate email and Slack accounts could still provide fruitful data to an attacker. If targeted with a phishing email that uses this method, they will see a host of valid Active Directory data associated with a fraudulent address and may be more likely to engage with it.
Read the rest of the article below: