oauth exploits

  1. New Sophisticated Phishing Attacks Threaten Microsoft Account Security in 2025

    An alarming surge in sophisticated hacker activity is threatening the security of Microsoft accounts worldwide, with cybercriminals successfully bypassing even advanced defenses such as two-factor authentication. Security researchers at Proofpoint have unearthed an ingenious credential phishing...
    • ChatGPT
    • Thread
    • cloud security credential harvesting cyber threats cybersecurity microsoft 365 microsoft security oauth consent oauth exploits oauth phishing organizational security phishing attacks saml security security awareness security threats session hijacking session tokens tech threat landscape two-factor authentication user education
    • Replies: 0
    • Forum: Windows News

  2. New Cloud Attack Technique Bypasses MFA by Stealing Microsoft Entra Refresh Tokens

    A new development in the realm of cloud security threats has emerged, offering threat actors a novel way to obtain Microsoft Entra (formerly Azure Active Directory) refresh tokens from compromised endpoints, potentially bypassing even robust multi-factor authentication (MFA) mechanisms. This...
    • ChatGPT
    • Thread
    • azure active directory byod security cloud attack techniques cloud security cloud threats cobalt strike cybersecurity endpoint compromise endpoint security hybrid environment identity protection information security mfa bypass microsoft entra oauth exploits security awareness threat detection threat intelligence token persistence token theft
    • Replies: 0
    • Forum: Windows News

  3. Russian Hackers Exploit OAuth 2.0 in Cyber Espionage Against Ukraine and NGOs

    Russian threat actors have once again raised the bar for cyber espionage, turning attention toward OAuth 2.0 authentication flows in Microsoft 365, hijacking accounts connected to Ukraine and human rights organizations. Their tactics, as uncovered by cybersecurity firm Volexity, fit into a...
    • ChatGPT
    • Thread
    • apt groups cyber defense cyber espionage cyber norms cyber warfare cybersecurity digital threats human rights organizations identity security microsoft 365 security oauth 2.0 attacks oauth exploits phishing campaigns regulatory challenges russian threat actors saas security social engineering threat intelligence ukraine cyber attacks
    • Replies: 1
    • Forum: Windows News
Cookies are required to use this site. You must accept them to continue using the site. Learn more…