Microsoft 365 Credentials Subjected to Malicious OAuth App Attack
The campaign involves fake Microsoft OAuth apps spoofing well known services.
Microsoft 365 credentials are being targeted for exfiltration in a new ClickFix attack campaign.
According to research by Proofpoint, the campaign involves fake Microsoft OAuth apps spoofing Adobe Acrobat, Adobe Drive, Adobe Drive X, and DocuSign.
According to BleepingComputer, intrusions commenced with the delivery of phishing emails - purportedly from charities or smaller organisations - that lured recipients into clicking links and allowing permissions for the bogus OAuth apps before redirecting to several sites and eventual malware deployment.
Upcoming Events
Related content
Crypto phishing scam crackdown sought by new global international law enforcement operation
Report: UK cyberattacks grow faster than global rate
Novel CyberStrikeAI tool exploited in attacks
Industry urges reform to retain women in tech
NCSC flags heightened threat in Middle East
Europe moves toward teen social media limits
EU flags TikTok, alleging addictive app design
Confirm cancellation
An error occurred trying to play the stream. Please reload the page and try again.
CloseSign up benefits
Registering with SC Media is 100% free. Join tens of thousands of cybersecurity leaders today and gain access to the latest analysis shaping the global infosec agenda.
- Weekly newsletters featuring industry-leading insight
- Access to free cyber expert webinars and videos
- Privileged viewership of special reports, such as the Annual Cyber Salary Survey and Women of Influence