#microsoft-365-security
#microsoft-365-security

[ follow ]

FBI warns Kali365 phishing kit is stealing Microsoft OAuth tokens at scale

Stolen Microsoft OAuth tokens from phishing kits can bypass MFA and grant attackers access to email and Teams accounts without credentials.

Information security

fromThe Hacker News

3 days ago

The New Phishing Click: How OAuth Consent Bypasses MFA

EvilTokens used OAuth consent to steal refresh tokens, bypassing MFA and avoiding sign-in detection by exploiting routine user clicks on microsoft.com/devicelogin.

Business

fromTechzine Global

5 months ago

Proofpoint completes acquisition of Hornetsecurity for $1.8 billion

Proofpoint acquired Hornetsecurity for $1.8 billion to expand Microsoft 365 security, data protection, and compliance offerings to SMBs and MSPs, extending reach to 125,000 customers.

[ Load more ]

#microsoft-365-security#microsoft-365-security

FBI warns Kali365 phishing kit is stealing Microsoft OAuth tokens at scale

The New Phishing Click: How OAuth Consent Bypasses MFA

Proofpoint completes acquisition of Hornetsecurity for $1.8 billion

#microsoft-365-security
#microsoft-365-security