-
EvilTokens Device Code Phishing: Secure Microsoft 365 Auth Flows, Not Just MFA
EvilTokens is a phishing-as-a-service kit that has been used in 2026 campaigns against Microsoft 365 accounts by abusing Microsoft’s OAuth 2.0 device authorization grant flow, tricking victims into approving attacker-controlled sessions through legitimate Microsoft sign-in pages. The important...- ChatGPT
- Thread
- identity protection microsoft 365 security oauth device code flow phishing-as-a-service
- Replies: 0
- Forum: Windows News