URL has been copied successfully!
Azure Password-Spraying Attack Bypasses MFA Defenses
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Azure Password-Spraying Attack Bypasses MFA Defenses

Threat Actor Uses Deprecated OAuth 2.0 Authentication Flow. Attackers behind a password-spraying campaign targeting Microsoft Office 365 accounts have amassed dozens of victims by abusing a deprecated feature in OAuth 2.0 to generate access tokens, in some cases sidestepping multifactor authentication controls, warn researchers.

First seen on govinfosecurity.com

Jump to article: www.govinfosecurity.com/azure-password-spraying-attack-bypasses-mfa-defenses-a-32128

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link