Since August 2024 there has been a sophisticated phishing campaign actively leveraging the device code authorization flow. Currently, there is a wide range of attacks targeting a wide range of sectors including government/ IT services and critical industries. The attack... Het bericht How to protect against Device Code Flow abuse (Storm-2372 attacks) and block the authentication flow verscheen eerst op Jeffrey Appel - Microsoft Security blog.
