The Hacker News

Device Code Phishing Hits 340+ Microsoft 365 Orgs Across Five Countries via OAuth Abuse

Device code phishing targets 340+ Microsoft 365 orgs since Feb 2026 via OAuth abuse, enabling persistent token hijacking and ...

New EvilTokens service fuels Microsoft device code phishing attacks

A new malicious kit called EvilTokens integrates device code phishing capabilities, allowing attackers to hijack Microsoft ...
TWCN Tech News

Keep getting Microsoft single-use code requests [Fix]

If you keep getting Microsoft single-use code requests, read this post to know how to fix the issue. A single-use code is a verification code Microsoft sends to your registered email ID or phone ...
Bleeping Computer

Microsoft Trusted Signing service abused to code-sign malware

Cybercriminals are abusing Microsoft's Trusted Signing platform to code-sign malware executables with short-lived three-day certificates. Threat actors have long sought after code-signing certificates ...
TWCN Tech News

Not receiving code on Microsoft Authenticator app

The Microsoft Authenticator app is a vital tool for securing your accounts with two-factor authentication (2FA). When it stops delivering approval notifications or one-time codes, it can lock you out ...