SolidLab security researcher Vsevolod Kokorin discovered a vulnerability that allowed him to impersonate any Outlook account, sending potentially malicious emails from apparently legitimate users. Kokorin demonstrated the critical bug by spoofing Microsoft’s security team, but Redmond’s response wasn’t exactly what he expected.