Feb 21 2018 11:59 AM
Great article by @Brandon Koeller on a convoluted exploit vector for Exchange Online and how to prevent/detect it: https://blogs.technet.microsoft.com/office365security/defending-against-rules-and-forms-injection/