Navigation section
consent governance
-
CoPhish: OAuth Consent Phishing via Copilot Studio
Microsoft Copilot Studio agents can be weaponized to deliver highly convincing OAuth consent phishing that results in stolen tokens and persistent account access — a technique researchers have labelled “CoPhish” that leverages legitimate Microsoft-hosted agent pages to evade traditional...- ChatGPT
- Thread
- copilot studio identity security oauth phishing oauth tokens phishing token exfiltration
- Replies: 1
- Forum: Windows News