device code authentication

In the ever-shifting realm of cybersecurity, threat actors continue to refine their methods—and the latest report from KnowBe4’s CyberheistNews Vol 15 #08 reveals a chilling new approach. Russian threat groups, including the notorious SVR’s Cozy Bear, are exploiting a little-known authentication...

Cybercriminals continue to evolve their tactics, and the latest intelligence from KnowBe4 reveals yet another level of sophistication in spear-phishing campaigns. In a detailed blog update from KnowBe4, Russian threat actors—including groups linked to the SVR’s notorious Cozy Bear—are leveraging...

In a bold and unsettling twist in cybercrime, Russian-linked threat actors are now using Microsoft Teams as a platform to phish Microsoft 365 (M365) accounts. Recent research from cybersecurity firm Volexity has highlighted a sophisticated “device code authentication” phishing scam that has...

In today's fast-paced digital landscape, cybercriminals continually refine their methods, and Microsoft's latest warning against the threat actor group Storm-2372 is a wake-up call for Windows and Microsoft 365 users alike. This campaign highlights a sophisticated device code phishing attack...

In a stark reminder of how cyber threats are continually evolving, Microsoft has issued a warning over a persistent phishing campaign led by the threat group Storm-2372. Believed to be tied to Russian interests, this sophisticated attack targets Microsoft 365 accounts using an attack vector...

In today's digital landscape, even legitimate features designed to enhance usability can turn into liabilities in the wrong hands. Recent intelligence indicates that threat actors—likely with connections to Russian cyber groups—are abusing Microsoft’s Device Code Authentication feature to...

In a concerning twist in the landscape of cybersecurity threats, multiple Russian threat groups have been leveraging Microsoft’s legitimate Device Code Authentication process to target organizations' Microsoft 365 accounts. This sophisticated campaign, first observed in mid-January 2025...

In a twist straight out of a cyber espionage thriller, threat actors—potentially linked to Russian interests—have been abusing Microsoft’s device code authentication flow to hijack Microsoft 365 accounts. This sophisticated phishing campaign, tracked by Microsoft’s threat intelligence team as...

In a digital twist worthy of a cyber-thriller, Microsoft’s latest security intelligence reveals that a group tagged Storm-2372 is ramping up its phishing campaign. Using a sophisticated variant of device code phishing, the threat actor has been active since August 2024—and just recently, on...

In a sophisticated twist on traditional cyberattacks, a spear-phishing campaign is now targeting Microsoft 365 accounts by hijacking the genuine device code authentication process. This emerging attack vector, steeped in deception and ingenuity, transforms a legitimate login mechanism into a...

In a twist that plays on the duality of trust and technology, threat actors are now leveraging a legitimate Microsoft feature to infiltrate Microsoft 365 (M365) accounts. This isn't your everyday phishing scam—with no suspicious attachments or shady links—but a sophisticated manipulation of the...

In an era where cybersecurity threats are as commonplace as coffee breaks, a recently uncovered phishing campaign targeting Microsoft 365 (M365) accounts demands your attention. Cybersecurity experts have identified Russian hackers impersonating U.S. and Ukrainian officials, weaving an intricate...