Government-sponsored hackers invest more resources than ever to find new ways of attacking cloud. One of their preferred targets is Microsoft 365, previously called Office 365. Microsoft 365 is a platform used by an increasing number of organizations of all sizes. The researchers showed how APT groups have evolved to evade detection and extract hundreds of gigabytes of data from their victims. An older technique that has been around since 2017 is mailbox folder permission abuse, first described by Beau Bullock in the context of red teaming.”]