Security News > 2020 > July > Microsoft Warns on OAuth Attacks Against Cloud App Users
Against the backdrop of widespread remote working and the increased use of collaboration apps, attackers are ramping up application-based attacks that exploit OAuth 2.0, Microsoft is warning.
An offensive starts when an attacker registers a malicious app with an OAuth 2.0 provider, such as Microsoft's own Azure Active Directory.
Users can protect themselves by ensuring that whatever app they're signing into is actually legitimate.
As remote working continues and collaboration apps such as Zoom, Webex Teams, Box and Microsoft Teams become ubiquitous, users are getting more and more used to cloud apps and signing into them using the OAuth function, Girling warned.
"As a result, organizations around the world have scaled up cloud services to support collaboration and productivity from homeWith increased cloud app usage and the shift to working from home, security and how employees access company resources are even more top of mind for companies."
News URL
https://threatpost.com/microsoft-warns-oauth-attacks-cloud-app/157331/
Related news
- Malicious Adobe, DocuSign OAuth apps target Microsoft 365 accounts (source)
- SANS Institute Warns of Novel Cloud-Native Ransomware Attacks (source)
- Hidden Threats: How Microsoft 365 Backups Store Risks for Future Attacks (source)
- Microsoft Warns of Tax-Themed Email Attacks Using PDFs and QR Codes to Deliver Malware (source)
- Google's got a hot cloud infosec startup, a new unified platform — and its eye on Microsoft's $20B+ security biz (source)
- Microsoft Defender will isolate undiscovered endpoints to block attacks (source)
- Phishers abuse Google OAuth to spoof Google in DKIM replay attack (source)
- Attackers phish OAuth codes, take over Microsoft 365 accounts (source)
- Russian Hackers Exploit Microsoft OAuth to Target Ukraine Allies via Signal and WhatsApp (source)
- Hackers abuse OAuth 2.0 workflows to hijack Microsoft 365 accounts (source)