Hundreds of Microsoft sub-domains open to hijacking

Experts demonstrated that hundreds of Microsoft sub-domains could potentially be hijacked and abused to deliver malware and for phishing attacks

Zero-day in Salesforce email services exploited in targeted Facebook phishing campaign

Epic Games Ignored Epic Subdomain Takeover on their Authentication Domain, Promoted $1 Million Bounty to Address User Complaints, by Zach Edwards

Anatomy of a Reflected XSS: My Discovery on a Microsoft's Subdomain, by Sawrav Chowdhury

Apple and Microsoft vulnerable to 'domain jacking

Microsoft Seizes 42 Domains Used by Chinese Hacking Group Nickel

Protecting Subdomains Against Security Threats

How to find Subdomains of a Domain in Minutes?

Everything you wanted to know about trusts with AWS Managed Microsoft AD

Microsoft has a subdomain hijacking problem

10 DNS Attacks Types & Preventions - 2023

Email Routing subdomain support, new APIs and security protocols

Microsoft Azure Vulnerability Still Affecting Thousands of New Subdomains Each Month

How to Use Microsoft.com Domains to Bypass Firewalls & Execute Payloads « Null Byte :: WonderHowTo