Executive Summary
In early February 2026, a threat actor exploited an abandoned Microsoft Outlook add-in named AgreeTo, originally a meeting scheduling tool, to conduct a phishing campaign. By claiming the add-in's orphaned URL, the attacker replaced its content with a phishing kit that mimicked Microsoft's sign-in page, leading to the compromise of over 4,000 Microsoft account credentials. This incident underscores the risks associated with unmaintained third-party applications and highlights the need for rigorous oversight of software supply chains. The attack also demonstrates how adversaries can leverage trusted platforms to distribute malicious content, emphasizing the importance of continuous monitoring and validation of third-party integrations.
Why This Matters Now
This incident highlights the critical need for organizations to monitor and manage third-party applications and integrations actively. As attackers increasingly exploit trusted platforms to distribute malware, ensuring the security of add-ins and plugins becomes paramount to prevent unauthorized access and data breaches.
Attack Path Analysis
The attack began with the hijacking of the abandoned 'AgreeTo' Outlook add-in, allowing the attacker to serve a malicious phishing kit to users. By controlling the add-in's domain, the attacker could present a fake Microsoft login page within Outlook, leading to the theft of over 4,000 Microsoft account credentials. With these credentials, the attacker could escalate privileges within the victims' cloud environments. The attacker then moved laterally across cloud services, accessing sensitive data and resources. Command and control were maintained through the compromised accounts, enabling continuous access and control over the victims' environments. Finally, the attacker exfiltrated sensitive data, including credit card numbers and banking security answers, leading to significant financial and reputational damage.
Kill Chain Progression
Initial Compromise
Description
The attacker hijacked the abandoned 'AgreeTo' Outlook add-in by taking control of its associated domain, allowing them to serve a malicious phishing kit to users.
MITRE ATT&CK® Techniques
Phishing: Spearphishing Attachment
Exploitation for Client Execution
Supply Chain Compromise: Compromise Software Supply Chain
Valid Accounts
Compromise Infrastructure: Botnet
User Execution: Malicious File
Command and Scripting Interpreter: Windows Command Shell
Office Application Startup: Outlook VBA
Potential Compliance Exposure
Mapping incident impact across multiple compliance frameworks.
PCI DSS 4.0 – Ensure all system components are protected from known vulnerabilities
Control ID: 6.2
NYDFS 23 NYCRR 500 – Cybersecurity Policy
Control ID: 500.03
DORA – ICT Risk Management Framework
Control ID: Article 5
CISA ZTMM 2.0 – Identity and Access Management
Control ID: 2.1
NIS2 Directive – Cybersecurity Risk Management Measures
Control ID: Article 21
Sector Implications
Industry-specific impact of the vulnerabilities, including operational, regulatory, and cloud security risks.
Financial Services
Multi-vector campaigns targeting Outlook add-ins and encrypted traffic expose banking systems to lateral movement, data exfiltration, and compliance violations across hybrid cloud environments.
Health Care / Life Sciences
Wormable botnet and AI malware threaten patient data through compromised email systems, inadequate east-west traffic security, and insufficient egress policy enforcement mechanisms.
Government Administration
Zero-day patches and supply-chain exposure create critical vulnerabilities in trusted government workflows, requiring enhanced zero trust segmentation and threat detection capabilities.
Information Technology/IT
Cloud-native security fabric gaps enable shadow AI risks and prompt injection attacks while legacy botnet tactics compromise Kubernetes environments and multicloud visibility.
Sources
- Weekly Recap: Outlook Add-Ins Hijack, 0-Day Patches, Wormable Botnet & AI Malwarehttps://thehackernews.com/2026/02/weekly-recap-outlook-add-ins-hijack-0.htmlVerified
- Outlook add-in warnings - Microsoft Supporthttps://support.microsoft.com/en-us/office/outlook-add-in-warnings-346f5ae7-b996-46d1-a56d-410b9b082a7cVerified
- 1st malicious Outlook add-in ‘AgreeToSteal’ discovered, over 4,000 credentials stolen | SC Mediahttps://www.scworld.com/brief/first-malicious-outlook-add-in-agreetosteal-discovered-over-4000-credentials-stolenVerified
- A popular Microsoft Outlook add-in has been hijacked to try and steal user accounts - here's how to stay safehttps://www.techradar.com/pro/security/a-popular-microsoft-outlook-add-in-has-been-hijacked-to-try-and-steal-user-accounts-heres-how-to-stay-safeVerified
Frequently Asked Questions
Cloud Native Security Fabric Mitigations and ControlsCNSF
Aviatrix Zero Trust CNSF is pertinent to this incident as it could have limited the attacker's ability to move laterally and exfiltrate data by enforcing strict segmentation and identity-aware policies, thereby reducing the overall blast radius.
Control: Cloud Native Security Fabric (CNSF)
Mitigation: While Aviatrix Zero Trust CNSF may not prevent the initial compromise via a hijacked add-in, it could limit the attacker's subsequent actions within the cloud environment.
Control: Zero Trust Segmentation
Mitigation: Aviatrix Zero Trust Segmentation could likely limit the attacker's ability to escalate privileges by enforcing strict identity-aware access controls, reducing unauthorized access to sensitive resources.
Control: East-West Traffic Security
Mitigation: Aviatrix East-West Traffic Security could likely limit lateral movement by monitoring and controlling internal traffic, reducing the attacker's ability to access multiple services.
Control: Multicloud Visibility & Control
Mitigation: Aviatrix Multicloud Visibility & Control could likely limit the attacker's ability to maintain command and control by providing real-time monitoring and management across cloud environments.
Control: Egress Security & Policy Enforcement
Mitigation: Aviatrix Egress Security & Policy Enforcement could likely limit data exfiltration by controlling outbound traffic and enforcing strict egress policies.
While Aviatrix Zero Trust CNSF may not eliminate all impacts, it could likely reduce the severity by limiting the scope of data accessible to attackers.
Impact at a Glance
Affected Business Functions
- Email Communications
- Calendar Scheduling
- User Authentication
Estimated downtime: N/A
Estimated loss: N/A
Over 4,000 Microsoft account credentials, including some credit card numbers and banking security answers.
Recommended Actions
Key Takeaways & Next Steps
- • Implement Zero Trust Segmentation to limit lateral movement within cloud environments.
- • Enforce Multi-Factor Authentication (MFA) to prevent unauthorized access through compromised credentials.
- • Utilize Threat Detection & Anomaly Response systems to identify and respond to suspicious activities promptly.
- • Regularly audit and manage third-party add-ins and applications to prevent exploitation of abandoned or vulnerable software.
- • Educate users on recognizing phishing attempts and the importance of verifying the authenticity of login prompts.
