Hackers Using Malicious OAuth Apps to Take Over Email Servers



September 23, 2022 at 10:44AM

Microsoft on Thursday warned of a consumer-facing attack that made use of rogue OAuth applications on compromised cloud tenants to ultimately seize control of Exchange servers and spread spam. "The threat actor launched credential stuffing attacks against high-risk accounts that didn't have multi-factor authentication (MFA) enabled and leveraged the unsecured administrator accounts to gain

from The Hacker News https://ift.tt/BCxcrnf

Genrerating Link.... 15 seconds.

Your Link is Ready.

Share this post