Trending

#OAuthattack

Latest posts tagged with #OAuthattack on Bluesky

Latest Top

Posts tagged #OAuthattack

Cybersecurity News Everyday
Cybersecurity News Everyday
@hendryadrian.bsky.social
1 day ago
Preview
Inside an AI-enabled device code phishing campaign Microsoft Defender observed the Storm-2372 device code phishing campaign that abused the OAuth device code flow, dynamic on-demand code generation, and short-lived cloud infrastructure to bypass MFA and evade signature- and reputation-based controls. The campaign used automation platforms (e.g., Railway.com), cloud hosting (Vercel, Cloudflare Workers, AWS Lambda), clipboard hijacking, Microsoft Graph reconnaissance, and malicious inbox rules to maintain persistence and exfiltrate high-value email data. #Storm2372 #RailwayCom

Storm-2372 exploited OAuth device code flow with dynamic code generation and short-lived cloud infrastructure to bypass MFA and evade detection. Techniques included clipboard hijacking and malicious inbox rules. #OAuthAttack #CloudExploitation #USA

1 0 0 0
Cybersecurity News Everyday
Cybersecurity News Everyday
@hendryadrian.bsky.social
4 weeks ago
Preview
OAuth Device Code Phishing: A New Microsoft 365 Account Breach Vector Phishing campaigns abusing Microsoft's OAuth Device Code flow have rapidly increased, with ANY.RUN analysts detecting more than 180 phishing URLs in a single week that trick victims into approving attacker-initiated device authorizations. Because victims complete authentication on legitimate Microsoft pages and traffic runs over encrypted HTTPS, attackers receive OAuth tokens for...

Phishing campaigns exploit Microsoft’s OAuth Device Code flow to steal OAuth tokens by tricking users into approving device authorizations on legit pages. Over 180 phishing URLs detected in one week. #OAuthAttack #Microsoft365 #CloudSecurity

0 0 0 0
CyberTaters
CyberTaters
@potato.software
2 months ago

Alert: 'ConsentFix' attack exploits OAuth to bypass Microsoft Entra authentication, stealing authorization codes. Stay vigilant! #PotatoSecurity #OAuthAttack #MicrosoftEntra #ConsentFix Link: thedailytechfeed.com/consentfix-e...

0 0 0 0
The Daily Tech Feed
The Daily Tech Feed
@thedailytechfeed.com
2 months ago
Post image

Alert: 'ConsentFix' attack exploits OAuth to bypass Microsoft Entra authentication, stealing authorization codes. Stay vigilant! #CyberSecurity #OAuthAttack #MicrosoftEntra #ConsentFix Link: thedailytechfeed.com/consentfix-e...

0 0 0 0
Naoya
Naoya
@naoyacreates.bsky.social
7 months ago
Preview
DevOps Identity Security: Stop OAuth Attacks | AI News Discover the critical identity security gap in DevOps & how to protect your CI/CD pipelines from OAuth attacks.

AIMindUpdate News!
Thousands of developers were hit by an OAuth attack! Your identity is the new perimeter. #DevOpsSecurity #OAuthAttack #IdentitySecurity

Click here↓↓↓
aimindupdate.com/2025/08/28/i...

0 0 0 0
speicherguide.de
speicherguide.de
@speicherguide.bsky.social
7 months ago
Preview
Salesforce-Hack: Millionen an Allianz-Life-Daten öffentlich Dem Angriff auf den US-Versicherer Allianz Life folgt jetzt die Veröffentlichung von 2,8 Millionen Datensätzen mit sensiblen Kunden- und Partnerinformationen. Hinter der Attacke steht mutmaßlich die H...

💣 Allianz Life-Hack: 2,8 Mio. Datensätze aus Salesforce-Systemen geleakt. Mutmaßlich beteiligt: ShinyHunters und Scattered Spider.

👉 www.speicherguide.de/management/c...

#Cybersicherheit #cyberangriff #DataBreach #ITSicherheit #Cybercrime #DataProtection #OAuthAttack

0 0 0 0
Technijian
Technijian
@technijian.bsky.social
1 year ago
Preview
Urgent Warning: OAuth Attacks Target Microsoft 365 & GitHub OAuth Attacks on Microsoft 365 and GitHub are escalating fast. Discover how fake Adobe, DocuSign, and GitHub apps are compromising user...

🚨 OAuth Attacks are on the rise! Cybercriminals are targeting #Microsoft365 & #GitHub using fake Adobe & DocuSign apps to steal credentials and..

🔗 technijian.com/microsoft/oa...

#CyberSecurity #OAuthAttack #CloudSecurity #PhishingAlert #Technijian #GitHubSecurity #InfoSec #ThreatIntel #DataBreach

1 0 0 0
@matricedigitale.bsky.social
1 year ago
Post image

Gravi minacce su GitHub: una GitHub Action compromessa espone segreti CI/CD e una campagna di phishing prende di mira 12.000 repository.

#CI/CDsecurity #cybersecurity #github #GitHubAction #malware #OAuthattack #PHISHING #supplychainattack
www.matricedigitale.it/sicurezza-in...

0 0 0 0
@matricedigitale.bsky.social
1 year ago
Post image

Gravi minacce su GitHub: una GitHub Action compromessa espone segreti CI/CD e una campagna di phishing prende di mira 12.000 repository.

#CI/CDsecurity #cybersecurity #github #GitHubAction #malware #OAuthattack #PHISHING #supplychainattack
www.matricedigitale.it/sicurezza-in...

0 0 0 0