Microsoft Flags AI-Driven Phishing: LLM-Crafted SVG Files Outsmart Email Security

Microsoft warns of a phishing campaign targeting U.S. organizations, using AI-generated code to obfuscate payloads within SVG files. The attack, detected on August 28, 2025, employs business terminology to disguise malicious intent, redirecting users to a fake login page to harvest credentials. The use of SVG files, which support dynamic content and obfuscation techniques, makes this attack particularly concerning.