Hackers Exploit HTTP Client Tools to Hijack Microsoft 365