Researchers at Enclave disclosed a vulnerability dubbed FlagLeft in six Microsoft 365 Android apps that allowed any co-installed third-party app to silently obtain valid Microsoft account tokens from a signed-in user. The flaw stemmed from a production debug setting, setIsDebugMode(true), left enabled in a shared Microsoft SDK, which disabled the authorization check meant to ensure tokens were handed only to trusted Microsoft apps. Affected apps included Word, PowerPoint, Excel, Microsoft 365 Copilot, Microsoft Loop, and OneNote; Teams was reportedly not affected because its production debug flag was configured correctly.
Because the apps relied on FOCI token sharing for single sign-on, a malicious Android app could potentially capture long-lived refresh tokens and access Microsoft services including email, OneDrive files, calendars, and messaging functions without a password, login prompt, or permission prompt. Microsoft confirmed the issue, assigned multiple CVEs—including four covering Copilot, Word, PowerPoint, and Excel with CVSS scores ranging from 4.4 to 7.7—and shipped fixes through Google Play updates. Researchers said there was no public evidence of active exploitation before remediation, but warned that previously exposed refresh tokens may remain valid after app updates, making token revocation and verification of patched app versions important for affected organizations.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
3 events from the most recent confirmed update back to the earliest known activity.
Researchers publicly disclosed that several Microsoft 365 Android apps could hand account tokens to any malicious app on the same device without user interaction, potentially exposing email, OneDrive, calendars, and messaging capabilities. The disclosure also noted there was no public evidence of exploitation before the fix.
Researchers at Enclave identified an Android vulnerability dubbed FlagLeft in a shared Microsoft SDK that let any co-installed app silently obtain valid Microsoft account tokens from several Microsoft 365 apps. The issue was traced to a production debug setting, setIsDebugMode(true), which disabled the authorization check meant to restrict token sharing to trusted Microsoft apps.
On 2026-05-12, Microsoft confirmed the issue, assigned multiple CVEs, and released Google Play updates for affected apps including Copilot, Word, PowerPoint, and Excel. The flaw affected Word, PowerPoint, Excel, Microsoft 365 Copilot, Microsoft Loop, and OneNote, while Teams was reported as not affected.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
3 references tracked. Mallory keeps watching after this page renders.
thehackernews.com
Open sourcecybersecuritynews.com
Open sourceenclave.ai
Open sourceMap indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.