News

Russian cyberattackers spotted hitting Microsoft Teams with new phishing campaign
In order to protect against the specific attack vector used by Storm-2372, Microsoft recommends: Disabling device code flow ...
Bleeping Computer16d
Hackers abuse OAuth 2.0 workflows to hijack Microsoft 365 accounts
The researchers simplified in the following diagram the attack flow targeting users ... "stolen OAuth authorization code to register a new device to the victim’s Microsoft Entra ID (formerly ...
Computing3mon
Microsoft 365 targeted in new phishing campaign linked to Russia
Microsoft Threat Intelligence warns that ... These include only allowing device code flow where necessary, blocking it where possible, and configuring Entra ID’s device code flow accordingly ...