all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Microsoft disables verified partner accounts used for OAuth phishing

Add to bookmarks
Jan. 31, 2023, 3:13 p.m. | Bill Toulas

BleepingComputer www.bleepingcomputer.com

Microsoft has disabled multiple fraudulent, verified Microsoft Partner Network accounts for creating malicious OAuth applications that breached organizations' cloud environments to steal email. [...]

accounts applications breached cloud cloud environments disabled email environments fraudulent malicious malicious oauth applications microsoft network oauth organizations partner phishing security steal verified

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

LA County Health Services: Patients' data exposed in phishing attack 34 minutes ago | www.bleepingcomputer.com
attack breach care data +21
Researchers sinkhole PlugX malware server with 2.5 million unique IPs an hour ago | www.bleepingcomputer.com
addresses command command and control connections +11
Reddit down in major outage blocking access to web, mobile apps 3 hours ago | www.bleepingcomputer.com
access apps blocking down +11
Over 1,400 CrushFTP servers vulnerable to actively exploited bug 3 hours ago | www.bleepingcomputer.com
actively exploited attacks bug critical +16
WP Automatic WordPress plugin hit by millions of SQL injection attacks 6 hours ago | www.bleepingcomputer.com
access accounts administrative privileges attacks +17
New Brokewell malware takes over Android devices, steals data 10 hours ago | www.bleepingcomputer.com
android android banking trojan android devices applications +18
US charges Samourai cryptomixer founders for laundering $100 million 23 hours ago | www.bleepingcomputer.com
charged charges criminal cryptocurrency +12
Maximum severity Flowmon bug has a public exploit, patch now 1 day ago | www.bleepingcomputer.com
bug code concept exploit +16
ArcaneDoor hackers exploit Cisco zero-days to breach govt networks 1 day, 3 hours ago | www.bleepingcomputer.com
adaptive security asa breach cisco +23

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Physical Security Operations Center - Supervisor

@ Equifax | USA-GA-Alpharetta-JVW3
View on infosec-jobs.com

Network Cybersecurity Engineer - Overland Park, KS Hybrid

@ Black & Veatch | Overland Park, KS, US
View on infosec-jobs.com

Cloud Security Engineer

@ Point72 | United States
View on infosec-jobs.com

Technical Program Manager, Security and Compliance, Cloud Compute

@ Google | New York City, USA; Kirkland, WA, USA
View on infosec-jobs.com

EWT Security | Vulnerability Management Analyst - AM

@ KPMG India | Gurgaon, Haryana, India
View on infosec-jobs.com
View more jobs