According to Wiz Reserach, exploiting a flaw made it possible to take control of millions of Microsoft 365 accounts and
it also became possible to collect private information from Microsoft services, including Office, Outlook, and Teams.
And with the vulnerability called BingBang, according to Wiz’s experience, Bing search results could also be modified,
and users could also be attacked by it,
as a result of which it was possible to access stored e-mails, SharePoint documents, Teams messages, and files stored on OneDrive.
The vulnerability was reported to Microsoft on January 31, who fixed it two days later.