Multiple threat actors are compromising Microsoft 365 accounts in phishing attacks that leverage the OAuth device code ...
A Russia-aligned threat group uses Microsoft 365 device code phishing to steal credentials and take over accounts, tracked ...
Hackers thought to be aligned with China and Russia are suspected to be behind a wave of account takeover attacks targeting Microsoft 365 users.
Proofpoint has warned about phishing campaigns abusing legitimate device authorization flow to bypass MFA and gain persistent ...
Financially motivated and nation-state threat groups are behind a surge in the use of device code phishing attacks that abuse Microsoft's legitimate OAuth 2.0 device authorization grant flow to trick ...
A surge in phishing campaigns abusing Microsoft’s OAuth device code authorization flow has been observed with multiple threat ...
Microsoft has confirmed that the December 2025 security updates are breaking Message Queuing (MSMQ) functionality, affecting ...
Kaspersky reports a spike in phishing emails containing malicious QR codes. Detections for these jumped from 46,969 in August ...
Overview On December 10, NSFOCUS CERT detected that Microsoft released the December Security Update patch, which fixed 57 security issues involving widely used products such as Windows, Microsoft ...
Microsoft is killing off an obsolete and vulnerable encryption cipher that Windows has supported by default for 26 years ...
A new cybersecurity report says Microsoft leads all brands in phishing impersonation, with scams posing as support and ...
Microsoft is moving to disable RC4, an encryption cipher embedded in Windows authentication for more than two decades. The decision follows years of documented abuse, repeated warnings from security ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback