Threat actors launch financially motivated attacks abusing OAuth applications

Dec. 13, 2023, 8:24 p.m. | Steve Zurier

SC Magazine feed for Strategy www.scmagazine.com

Microsoft researchers say threat actors abused OAuth to deploy VMs for cryptomining, establish persistence following BEC attacks, and launch spamming activity.

abusing applications application security attacks bec bec attacks cryptomining deploy identity launch microsoft oauth persistence researchers spamming threat threat actors vms

Visit resource

More from www.scmagazine.com / SC Magazine feed for Strategy

Smoke and (screen) mirrors: A strange signed backdoor 12 hours ago | www.scmagazine.com

backdoor masquerading network security ops +6

Attackers evade detection by leveraging Microsoft Graph API 14 hours ago | www.scmagazine.com

api api security application security attackers +14

Stronger cybersecurity aimed by Menlo Security, Google Cloud collaboration 18 hours ago | www.scmagazine.com

cloud cloud security collaboration customers +10

US arrests ex-cyber consultant accused of IT firm extortion 18 hours ago | www.scmagazine.com

address arrest arrests bleepingcomputer +21

Accelerated patching found with CISA KEV catalog-listed flaws 18 hours ago | www.scmagazine.com

agency catalog cisa cisa kev +24

Path traversal vulnerability elimination in software sought by feds 18 hours ago | www.scmagazine.com

agency bleepingcomputer cybersecurity devsecops +17

New AI security bill unveiled in Senate 18 hours ago | www.scmagazine.com

act ai act aiml ai security +14

Data breach impacts Airsoft community site 18 hours ago | www.scmagazine.com

breach cloud cloud storage community +19

Details on 2021 Chemonics hack remain scant 18 hours ago | www.scmagazine.com

agency compromised critical-infrastructure-security cyberattack +11

Principal Security Engineer

@ Elsevier | Home based-Georgia

View on infosec-jobs.com

Infrastructure Compliance Engineer

@ NVIDIA | US, CA, Santa Clara

View on infosec-jobs.com

Information Systems Security Engineer (ISSE) / Cybersecurity SME

@ Green Cell Consulting | Twentynine Palms, CA, United States

View on infosec-jobs.com

Sales Security Analyst

@ Everbridge | Bengaluru

View on infosec-jobs.com

Alternance – Analyste Threat Intelligence – Cybersécurité - Île-de-France

@ Sopra Steria | Courbevoie, France

View on infosec-jobs.com

Third Party Cyber Risk Analyst

@ Chubb | Philippines

View on infosec-jobs.com

View more jobs

all InfoSec news

Threat actors launch financially motivated attacks abusing OAuth applications

More from www.scmagazine.com / SC Magazine feed for Strategy

Jobs in InfoSec / Cybersecurity

Principal Security Engineer

Infrastructure Compliance Engineer

Information Systems Security Engineer (ISSE) / Cybersecurity SME

Sales Security Analyst

Alternance – Analyste Threat Intelligence – Cybersécurité - Île-de-France

Third Party Cyber Risk Analyst