Bleeping Computer

Microsoft will disable Basic Auth in Exchange Online in October 2022

Microsoft announced that Basic Authentication will be turned off for all protocols in all tenants starting October 1st, 2022, to protect millions of Exchange Online users. This announcement comes ...
Bleeping Computer

Botnet targets Basic Auth in Microsoft 365 password spray attacks

A massive botnet of over 130,000 compromised devices is conducting password-spray attacks against Microsoft 365 (M365) accounts worldwide, targeting basic authentication to evade multi-factor ...
heise online

Exchange Online: Microsoft updates timeline for SMTP Auth Basic end

For various protocols, Microsoft has already removed Basic Authentication in Exchange Online. The timeline for SMTP is being postponed. So far, Microsoft has disabled simple username-password login ...