Skip to content
The Nexus
SECURITYApr 7 · 20:19 UTCTHE REGISTERJessica Lyons

Hundreds of orgs compromised daily in Microsoft device code phishing attacks

A Microsoft device-code phishing campaign uses AI and automation to compromise hundreds of organizations daily, enabling attackers to access corporate emails and steal financial data. The attack leverages 'EvilTokens' to bypass multi-factor authentication, highlighting vulnerabilities in cybersecurity practices.

Nexus surfaces and summarizes. The full story lives at the source.

Mentioned
Spot something wrong with this article?Report a problem →
Forward this