Introducing a new phishing technique for compromising Microsoft Office 365 accounts
The ongoing world phishing campaigns towards Microsoft Office 365 have used a variety of phishing techniques. Currently attackers are utilising solid login web sites and OAuth app consents. In this blog, Genius Fixers introduce a new phishing technique primarily based on Azure AD device code authentication flow. We additionally furnish guidelines on how to detect usage of compromised credentials and what to do to stop phishing using the new technique. What is phishing? Phishing is a cybercrime in which a goal or ambitions are contacted by means of email, phone or text message with the aid of someone posing as a authentic group to entice people into offering touchy information such as for my part identifiable information, banking and savings card details, and passwords. Current phishing techniques: There are several phishing methods to be used through criminals. Next Genius Fixers quickly introduce two of the most used strategies related to Microsoft Office 365 and Azure AD.