Phishing attackers bypassed Microsoft's verified publisher checks to create apps that dupe victims into granting access to their online accounts. Read More