Microsoft is adding new security warnings to the Security and Compliance Center (SCC) default alert policies to inform ITĀ admins of detected phishing attempts abusing Microsoft Forms in their tenants. […]

from https://www.bleepingcomputer.com/news/security/microsoft-will-alert-office-365-admins-of-forms-phishing-attempts/