A Russia-aligned threat group uses Microsoft 365 device code phishing to steal credentials and take over accounts, tracked ...
Multiple threat actors are compromising Microsoft 365 accounts in phishing attacks that leverage the OAuth device code ...
2don MSN
State actors are abusing OAuth device codes to get full M365 account access - here's what we know
Cybercriminals, including state-sponsored threat actors, are increasingly abusing Microsoft ’s OAuth 2.0 device code ...
A new variation of the ClickFix attack dubbed 'ConsentFix' abuses the Azure CLI OAuth app to hijack Microsoft accounts without the need for a password or to bypass multi-factor authentication (MFA) ...
Rapidly change your password, the Microsoft security team urges as Shai-Hulud Dune Worm cloud attacks continue.
Financially motivated and nation-state threat groups are behind a surge in the use of device code phishing attacks that abuse Microsoft's legitimate OAuth 2.0 device authorization grant flow to trick ...
A surge in phishing campaigns abusing Microsoft’s OAuth device code authorization flow has been observed with multiple threat ...
Microsoft is killing off an obsolete and vulnerable encryption cipher that Windows has supported by default for 26 years ...
Overview On December 10, NSFOCUS CERT detected that Microsoft released the December Security Update patch, which fixed 57 security issues involving widely used products such as Windows, Microsoft ...
BLACK HAT, EUROPE -- (Booth #305) -- Push Security, a leader in browser-based detection and response, today announced the discovery of a new class of phishing attack that enables Microsoft account ...
A new cybersecurity report says Microsoft leads all brands in phishing impersonation, with scams posing as support and ...
America’s cyber defense agency now warns Google, Microsoft and Apple users to secure their accounts — change passwords, ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback