A security bug has been discovered that allows anyone to spoof Microsoft employee emails, posing a significant cybersecurity threat. The bug, which remains unpatched, enables malicious actors to impersonate Microsoft corporate email accounts, making phishing emails appear credible and harder to detect. This vulnerability specifically affects Outlook emails. A researcher demonstrated the bug, highlighting its potential to increase the success rate of phishing attacks.