A new malicious kit called EvilTokens integrates device code phishing capabilities, allowing attackers to hijack Microsoft ...
Researchers warn of new VENOM phishing kit ...
Device code phishing attacks that abuse the OAuth 2.0 Device Authorization Grant flow to hijack accounts have surged more ...
Device code phishing targets 340+ Microsoft 365 orgs since Feb 2026 via OAuth abuse, enabling persistent token hijacking and ...
A new wave of device code phishing shows how threat actors are scaling account compromise using AI and end‑to‑end automation.
SAN FRANCISCO, Feb. 11, 2026 /PRNewswire/ -- StrongestLayer today released a new threat intelligence report, From Nation-States to Amateur Hackers: Why QR Code Phishing Evades Email Security, ...
A global phishing campaign targeting Microsoft 365 bypasses security codes using a legitimate login feature, impacting ...
The phishing-as-a-service toolkit leverages legitimate authentication to capture tokens and access Microsoft 365 services.
A credential phishing campaign that likely relied on AI-generated code to evade detection has been stopped by Microsoft Threat Intelligence. The attack, which targeted organizations in the US, ...
That email advertising a great deal on an inflatable pool to cool off with during this sweltering July may come with a nifty QR code to simplify the buying process. Or you find a QR code touting a ...
A large-scale credential theft campaign targeting senior executives has been linked to a previously unknown automated ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results