Security News > 2015 > October > On (OAuth) token hijacks for fun and profit part #2 (Microsoft/xxx integration) (Reddit)
2015-10-14 15:28
News URL
http://www.reddit.com/r/netsec/comments/3opzux/on_oauth_token_hijacks_for_fun_and_profit_part_2/
Related news
- Malicious Adobe, DocuSign OAuth apps target Microsoft 365 accounts (source)
- Microsoft Entra account lockouts caused by user token logging mishap (source)
- Attackers phish OAuth codes, take over Microsoft 365 accounts (source)
- Russian Hackers Exploit Microsoft OAuth to Target Ukraine Allies via Signal and WhatsApp (source)
- Hackers abuse OAuth 2.0 workflows to hijack Microsoft 365 accounts (source)