Hackers Abused Microsoft’s « Verified Publisher » OAuth Apps to Breach Corporate Email Accounts
,
Microsoft on Tuesday said it took steps to disable fake Microsoft Partner Network (MPN) accounts that were used for creating malicious OAuth applications as part of a phishing campaign designed to breach organizations’ cloud environments and steal email.
« The applications created by these fraudulent actors were then used in a consent phishing campaign, which tricked users into granting
« The applications created by these fraudulent actors were then used in a consent phishing campaign, which tricked users into granting
,
Microsoft on Tuesday said it took steps to disable fake Microsoft Partner Network (MPN) accounts that were used for creating malicious OAuth applications as part of a phishing campaign designed to breach organizations’ cloud environments and steal email.
« The applications created by these fraudulent actors were then used in a consent phishing campaign, which tricked users into granting
« The applications created by these fraudulent actors were then used in a consent phishing campaign, which tricked users into granting
, ,
https://thehackernews.com/2023/02/hackers-abused-microsofts-verified.html