Coding Gaffe Exposes Microsoft 365 Accounts to Widespread Takeover

A disabled security setting meant to protect authentication across Android versions of key apps like Word, PowerPoint, and Excel paved the way for attackers to steal logins and data.

Commercial risk teams are responding with tighter controls, scenario modeling, and broader collaboration across underwriting, claims, and cyber operations.

Leaders continue to prioritize resilience planning while balancing cost, coverage terms, and operational exposure in a changing market cycle.