Go back

Live Hacking: Exposing the Reality of Microsoft 365 Breaches

Join Huntress CEO Kyle Hanslovan for a live, technical demonstration exposing real-world Microsoft 365 breaches and modern defense strategies.

Partners
November 4, 2025
3m read
3m read
3m listen
3m watch
3m watch
Live Hacking: Exposing the Reality of Microsoft 365 BreachesLive Hacking: Exposing the Reality of Microsoft 365 Breaches
speakers
speakers
speakers
authors
Rajan Kapoor, VP, Security
participants
No items found.
share
Table of Contents
Example H2
Example H3
Example H4
Example H5
Example H6

Join Huntress CEO Kyle Hanslovan for a live, technical demonstration exposing real-world Microsoft 365 breaches and modern defense strategies.

The evolution of the threats we face today continues at breakneck speed–and our defense strategies need to keep pace. Today’s attackers have credential marketplaces, advanced social engineering, and AI-powered velocity behind them, making your Microsoft 365 security feel uncomfortably porous.

The attacks we see in the real world are faster, more coordinated, and rely on abusing built-in features, integrations, and common misconfigurations to get past your defenses. 

See it in action

Material is proud to partner with Huntress to bring a live, technical demonstration that cuts through the noise and shows you exactly what you’re up against. Huntress CEO and former NSA operative Kyle Hanslovan will walk through a complete, modern compromise of a Microsoft 365 environment, demonstrating the TTPs that are actively used in the wild.

This isn’t a theoretical exercise: it’s a pragmatic look at modern attacks.

  • Social Engineering and Credential Theft: How a motivated attacker leverages social tactics to quickly steal credentials from browsers.
  • MFA Bypass: The real-world techniques attackers use to circumvent Microsoft 365’s MFA policies and gain persistent access.
  • Rapid Lateral Movement: What happens next—the speed at which an attacker can leverage a single compromised identity to rapidly compromise interconnected cloud office systems and wreak havoc.

Why this demonstration matters

The native security tools in Microsoft 365 are powerful, but often lack the visibility and automated responses necessary to stop an attacker after they’ve bypassed the initial login. That doesn’t mean all hope is lost–as part of the demo, Kyle will showcase modern defense strategies that can stop attackers before they can wreak havoc. You’ll leave this demo better prepared to tangle with the threats we face today.

But you don’t want to read a marketing blurb about it: come check out a live demonstration of what’s being exploited, and see a defense strategy built to evolve with the threats we all face. 

Register for the webinar to see the full attack, the immediate response–and get free access to Huntress’s Identity Security Assessment for your Microsoft 365 environments.

Listen to the Podcast
Listen to the Podcast
Watch the Webinar
Watch the Video
Read More

Frequently Asked Questions

Find answers to common questions and get the details you need.

No items found.

Related posts

Our blog is your destination for expert insights, practical tips, and the latest news in technology. Stay informed with our regular updates and in-depth articles. Join the conversation and enhance your understanding of the tech landscape.

A Sharper Lens on Threats, A Clearer View of Risk: Material's Latest Updates
Blog Post

A Sharper Lens on Threats, A Clearer View of Risk: Material's Latest Updates

Material's updates make it even easier for security teams to understand and respond to risks and threats with an overhauled Email Threats Dashboard, a new Account View, and more.

Patrick Duffy
5m read
Read post
A Sharper Lens on Threats, A Clearer View of Risk: Material's Latest Updates
Podcast

A Sharper Lens on Threats, A Clearer View of Risk: Material's Latest Updates

Material's updates make it even easier for security teams to understand and respond to risks and threats with an overhauled Email Threats Dashboard, a new Account View, and more.

5m listen
Listen to episode
A Sharper Lens on Threats, A Clearer View of Risk: Material's Latest Updates
Podcast

A Sharper Lens on Threats, A Clearer View of Risk: Material's Latest Updates

Material's updates make it even easier for security teams to understand and respond to risks and threats with an overhauled Email Threats Dashboard, a new Account View, and more.

5m watch
Watch webinar
A Sharper Lens on Threats, A Clearer View of Risk: Material's Latest Updates
Podcast

A Sharper Lens on Threats, A Clearer View of Risk: Material's Latest Updates

Material's updates make it even easier for security teams to understand and respond to risks and threats with an overhauled Email Threats Dashboard, a new Account View, and more.

5m watch
Watch webinar
blog post

A Time to Build, a Time to Buy - How to Make a Choice

Building security tools in-house is seductive but often leads to costly, resource-draining tech debt, making buying a customizable platform the smarter choice unless the problem involves unique trust issues, an unserved market, or highly specialized environment logic.

Rajan Kapoor, VP, Security
m read
Read post
Podcast

A Time to Build, a Time to Buy - How to Make a Choice

Building security tools in-house is seductive but often leads to costly, resource-draining tech debt, making buying a customizable platform the smarter choice unless the problem involves unique trust issues, an unserved market, or highly specialized environment logic.

m listen
Listen to episode
Video

A Time to Build, a Time to Buy - How to Make a Choice

Building security tools in-house is seductive but often leads to costly, resource-draining tech debt, making buying a customizable platform the smarter choice unless the problem involves unique trust issues, an unserved market, or highly specialized environment logic.

m watch
Watch video
Downloads

A Time to Build, a Time to Buy - How to Make a Choice

Building security tools in-house is seductive but often leads to costly, resource-draining tech debt, making buying a customizable platform the smarter choice unless the problem involves unique trust issues, an unserved market, or highly specialized environment logic.

m listen
Watch video
Webinar

A Time to Build, a Time to Buy - How to Make a Choice

Building security tools in-house is seductive but often leads to costly, resource-draining tech debt, making buying a customizable platform the smarter choice unless the problem involves unique trust issues, an unserved market, or highly specialized environment logic.

m listen
Listen episode
blog post

Context Is Everything: Sharpening Account Takeover Detection with Network Intelligence

Material elevates Account Takeover (ATO) detection beyond basic IP logging by integrating real-time network intelligence from Spur, instantly differentiating legitimate remote work from sophisticated proxy-based attacks.

Mike Moran, Ph.D.
7
m read
Read post
Podcast

Context Is Everything: Sharpening Account Takeover Detection with Network Intelligence

Material elevates Account Takeover (ATO) detection beyond basic IP logging by integrating real-time network intelligence from Spur, instantly differentiating legitimate remote work from sophisticated proxy-based attacks.

7
m listen
Listen to episode
Video

Context Is Everything: Sharpening Account Takeover Detection with Network Intelligence

Material elevates Account Takeover (ATO) detection beyond basic IP logging by integrating real-time network intelligence from Spur, instantly differentiating legitimate remote work from sophisticated proxy-based attacks.

7
m watch
Watch video
Downloads

Context Is Everything: Sharpening Account Takeover Detection with Network Intelligence

Material elevates Account Takeover (ATO) detection beyond basic IP logging by integrating real-time network intelligence from Spur, instantly differentiating legitimate remote work from sophisticated proxy-based attacks.

7
m listen
Watch video
Webinar

Context Is Everything: Sharpening Account Takeover Detection with Network Intelligence

Material elevates Account Takeover (ATO) detection beyond basic IP logging by integrating real-time network intelligence from Spur, instantly differentiating legitimate remote work from sophisticated proxy-based attacks.

7
m listen
Listen episode
blog post

Beyond Block: Why Your Security Stack Needs More Verbs, not More Tools

Modern security demands organizations stop relying on perimeter blocking and adopt a richer vocabulary of proactive capabilities to manage risk dynamically inside collaborative cloud environments.

Nate Abbott
3
m read
Read post
Podcast

Beyond Block: Why Your Security Stack Needs More Verbs, not More Tools

Modern security demands organizations stop relying on perimeter blocking and adopt a richer vocabulary of proactive capabilities to manage risk dynamically inside collaborative cloud environments.

3
m listen
Listen to episode
Video

Beyond Block: Why Your Security Stack Needs More Verbs, not More Tools

Modern security demands organizations stop relying on perimeter blocking and adopt a richer vocabulary of proactive capabilities to manage risk dynamically inside collaborative cloud environments.

3
m watch
Watch video
Downloads

Beyond Block: Why Your Security Stack Needs More Verbs, not More Tools

Modern security demands organizations stop relying on perimeter blocking and adopt a richer vocabulary of proactive capabilities to manage risk dynamically inside collaborative cloud environments.

3
m listen
Watch video
Webinar

Beyond Block: Why Your Security Stack Needs More Verbs, not More Tools

Modern security demands organizations stop relying on perimeter blocking and adopt a richer vocabulary of proactive capabilities to manage risk dynamically inside collaborative cloud environments.

3
m listen
Listen episode
blog post

The Future Belongs to Defenders: Stopping the Silent Cloud Compromise

We’re done letting attackers weaponize trust in the cloud workspace: Material gives defenders the integrated visibility and automated control necessary to instantly stop threats like APT-29 the moment they sign in.

Patrick Duffy
5
m read
Read post
Podcast

The Future Belongs to Defenders: Stopping the Silent Cloud Compromise

We’re done letting attackers weaponize trust in the cloud workspace: Material gives defenders the integrated visibility and automated control necessary to instantly stop threats like APT-29 the moment they sign in.

5
m listen
Listen to episode
Video

The Future Belongs to Defenders: Stopping the Silent Cloud Compromise

We’re done letting attackers weaponize trust in the cloud workspace: Material gives defenders the integrated visibility and automated control necessary to instantly stop threats like APT-29 the moment they sign in.

5
m watch
Watch video
Downloads

The Future Belongs to Defenders: Stopping the Silent Cloud Compromise

We’re done letting attackers weaponize trust in the cloud workspace: Material gives defenders the integrated visibility and automated control necessary to instantly stop threats like APT-29 the moment they sign in.

5
m listen
Watch video
Webinar

The Future Belongs to Defenders: Stopping the Silent Cloud Compromise

We’re done letting attackers weaponize trust in the cloud workspace: Material gives defenders the integrated visibility and automated control necessary to instantly stop threats like APT-29 the moment they sign in.

5
m listen
Listen episode
Privacy Preference Center

By clicking “Accept”, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. View our Privacy Policy for more information.

Allow all
Decline all
New