https://www.microsoft.com/en-us/security/blog/2025/02/13/storm-2372-conducts-device-code-phishing-campaign/
Storm-2372 conducts device code phishing campaign | Microsoft Security Blog
May 15, 2025 - Microsoft Threat Intelligence Center discovered an active and successful device code phishing campaign by a threat actor we track as Storm-2372. Our ongoing...
device code phishingmicrosoft securitystorm2372conducts
https://thehackernews.com/2026/03/device-code-phishing-hits-340-microsoft.html?ref=blog.netmanageit.com
Device Code Phishing Hits 340+ Microsoft 365 Orgs Across Five Countries via OAuth Abuse
Device code phishing targets 340+ Microsoft 365 orgs since Feb 2026 via OAuth abuse, enabling persistent token hijacking and account takeover.
device code phishing
https://www.mimecast.com/threat-intelligence-hub/oauth-device-code-phishing-campaigns/
OAuth Device Code Phishing Campaigns Surge with EvilTokens Toolkit | Mimecast
Discover the surge in OAuth device code phishing campaigns, leveraging the EvilTokens Phishing-as-a-Service toolkit to compromise Microsoft 365 accounts. Learn...
device code phishingoauthcampaignssurgeeviltokens