New ConsentFix attack hijacks Microsoft accounts via Azure CLI

A new variation of the ClickFix attack dubbed 'ConsentFix' abuses the Azure CLI OAuth app to hijack Microsoft accounts without the need for a password or to bypass multi-factor authentication (MFA) ...
InfoWorld

Microsoft’s Dev Proxy puts APIs to the test

Building distributed apps requires specialized tools. Microsoft delivers with an API simulator that supports complex mocks ...
Cloud Security Alliance

Microsoft Entra ID Vulnerability: The Discovery That Shook Identity Security

An in-depth examination of the Microsoft Entra ID vulnerability exposing tenant isolation weaknesses, MFA gaps, and ...

Push Security Uncovers "ConsentFix": A New Class of Browser-Native Phishing Attack

BLACK HAT, EUROPE -- (Booth #305) -- Push Security, a leader in browser-based detection and response, today announced the discovery of a new class of phishing attack that enables Microsoft account ...
Becker's Hospital Review

Top health system CIO priorities for 2026

Health system CIOs are entering 2026 with a shared conviction: The industry’s next leap forward won’t come from adding more technology, but from scaling the right technology with discipline, ...

Shut Down And Restart—New Microsoft Attack Beats Passwords, 2FA And Passkeys

Check Point explains that this new technique “tricks people into giving attackers access to their Microsoft accounts. The ...

Warning: Microsoft 365 Account Hacking Surge—China And Russia Suspected

Hackers thought to be aligned with China and Russia are suspected to be behind a wave of account takeover attacks targeting Microsoft 365 users.

Here are all the new features added to Microsoft 365 Copilot in November and December 20250 0

Microsoft rolled out a bunch of exciting features to Microsoft 365 Copilot in the past couple of months, with something for everybody.

Microsoft Entra: Certificate Change – Some Admins Need to Take Action

At the end of 2023, Microsoft replaced certificates for Teams Phone. Despite the announcement the year before, admins were ...
Infosecurity Magazine

OAuth Device Code Phishing Campaigns Surge Targets Microsoft 365

A surge in phishing campaigns abusing Microsoft’s OAuth device code authorization flow has been observed with multiple threat ...
Indiatimes

Microsoft CEO Satya Nadella is making changes to the company's top ranks, here's what a leaked organisational chart show

Microsoft CEO Satya Nadella has restructured his senior leadership team, with 16 executives now reporting directly to him, signaling a significant transformation for the tech giant. This reshuffling ...