OAuth apps used in cryptocurrency mining, phishing campaigns, and BEC attacks | allinfosecnews.com

Dec. 13, 2023, 2:07 p.m. | Pierluigi Paganini

Security Affairs securityaffairs.co

Microsoft warns that threat actors are using OAuth applications cryptocurrency mining campaigns and phishing attacks. Threat actors are using OAuth applications such as an automation tool in cryptocurrency mining campaigns and other financially motivated attacks. The attackers compromise user accounts to create, modify, and grant high privileges to OAuth applications to carry out malicious activity […]

accounts applications apps attackers attacks automation bec bec attacks breaking news campaigns compromise cryptocurrency cryptocurrency mining cyber crime grant hacking high information security news it information security microsoft mining oauth password spraying phishing phishing attacks phishing campaigns pierluigi paganini privileges storm-1283 threat threat actors tool

More from securityaffairs.co / Security Affairs

Blackbasta gang claimed responsibility for Synlab Italia attack 14 hours ago | securityaffairs.co

april attack blackbasta breaking news +23

LockBit published data stolen from Simone Veil hospital in Cannes 1 day, 9 hours ago | securityaffairs.co

april attack breaking news cyber +25

Russia-linked APT28 and crooks are still using the Moobot botnet 1 day, 11 hours ago | securityaffairs.co

apt apt28 botnet breaking news +32

Dirty stream attack poses billions of Android installs at risk 1 day, 16 hours ago | securityaffairs.co

android android users applications apps +21

ZLoader Malware adds Zeus’s anti-analysis feature 1 day, 18 hours ago | securityaffairs.co

algorithm analysis anti-analysis authors +23

Ukrainian REvil gang member sentenced to 13 years in prison 2 days, 8 hours ago | securityaffairs.co

breaking news cyber crime cybercrime digital id +17

Pro-Russia hackers target critical infrastructure in North America and Europe 2 days, 10 hours ago | securityaffairs.co

agency america breaking news bureau +49

HPE Aruba Networking addressed four critical ArubaOS RCE flaws 2 days, 12 hours ago | securityaffairs.co

april aruba arubaos breaking news +26

Threat actors hacked the Dropbox Sign production environment 2 days, 16 hours ago | securityaffairs.co

access addresses authentication breached +24

Technical Senior Manager, SecOps | Remote US

@ Coalfire | United States

View on infosec-jobs.com

Global Cybersecurity Governance Analyst

@ UL Solutions | United States

View on infosec-jobs.com

Security Engineer II, AWS Offensive Security

@ Amazon.com | US, WA, Virtual Location - Washington

View on infosec-jobs.com

Senior Cyber Threat Intelligence Analyst

@ Sainsbury's | Coventry, West Midlands, United Kingdom

View on infosec-jobs.com

Embedded Global Intelligence and Threat Monitoring Analyst

@ Sibylline Ltd | Austin, Texas, United States

View on infosec-jobs.com

Senior Security Engineer

@ Curai Health | Remote

View on infosec-jobs.com