The Microsoft Defender Security Research Team has confirmed that a pervasive new authentication code attack is compromising ...

基于 OAuth 设备代码流滥用与 PaaS 基础设施托管的新型钓鱼攻击，标志着企业身份威胁进入合法协议劫持、可信资源伪装、无密码入侵的新阶段。Arctic Wolf 披露的 EvilTokens 相关活动表明，攻击者已实现攻击工业化、服务化、规模化 ...

Device code phishing attacks that abuse the OAuth 2.0 Device Authorization Grant flow to hijack accounts have surged more ...

The phishing-as-a-service toolkit leverages legitimate authentication to capture tokens and access Microsoft 365 services.

A new wave of device code phishing shows how threat actors are scaling account compromise using AI and end‑to‑end automation.

A surge in phishing campaigns abusing Microsoft’s OAuth device code authorization flow has been observed with multiple threat clusters using the technique to gain unauthorized access to Microsoft 365 ...