来自MSN

The growing threat of device code phishing and how to defend against It

Just as we think we’re getting one step ahead of cybercriminals, they find a new way to evade our defenses. The latest method causing trouble for security teams is that of device code phishing, a ...
Fortune India

Think multi-factor authentication keeps you safe? Kali365 shows why that’s no longer enough

Multi-factor authentication (MFA) has long been considered one of the strongest defences against cyberattacks. If a password ...

Is multi-factor authentication enough? Kali365 breach fuels security debate

Cybercriminals are increasingly targeting active sessions instead of passwords, and Kali365 is emerging as one of the ...
CSOonline

EvilTokens abuses Microsoft device code flow for account takeovers

A new phishing-as-a-service (PhaaS) campaign is abusing Microsoft’s device code authentication flow to gain unauthorized access to user accounts. Sekoia researchers first spotted the toolkit ...
American Banker

FBI: Phishing-as-a-service kit hijacks Microsoft 365

Microsoft's legitimate device-code entry page — the exact prompt victims are socially engineered into completing A new phishing kit lets criminals hijack Microsoft 365 accounts without stealing any ...
CSOonline

Hackers exploit Microsoft OAuth device codes to hijack enterprise accounts

Cybercriminals and state-sponsored hackers are increasingly exploiting Microsoft’s legitimate OAuth 2.0 device authorization process to hijack enterprise accounts, bypassing multifactor authentication ...
TechRepublic

6 Best Multi-Factor Authentication (MFA) Solutions

Explore top multi-factor authentication solutions for enhanced security and user authentication. Learn about the benefits and features of leading MFA providers. Multi ...