ConsentFix debrief: Insights from the new OAuth phishing attack

ConsentFix is an OAuth phishing technique abusing browser-based authorization flows to hijack Microsoft accounts. Push ...
Threat Post

Microsoft OAuth Flaw Opens Azure Accounts to Takeover

Some Microsoft applications are vulnerable to an authentication issue that could enable Azure account takeover. A vulnerability in the way Microsoft applications use OAuth for third-party ...
Bleeping Computer

New Azure AD B2B Google Feature Lets You Share Resources with Gmail Users

Azure Active Directory business-to-business, otherwise known as Azure AD B2B, allows organizations who use Azure AD to securely give access to applications, files, and resources to users outside of ...