Attackers are targeting Microsoft 365 users with device code authorization phishing, a technique that fools users into approving access tokens, Proofpoint warns.
The method abuses Microsoft’s OAuth 2.0 device authorization grant flow…
Attackers are targeting Microsoft 365 users with device code authorization phishing, a technique that fools users into approving access tokens, Proofpoint warns.
The method abuses Microsoft’s OAuth 2.0 device authorization grant flow…