> TritonInfoSec News
Home / Apr 02, 2026 / Story
0
#6 BleepingComputer general April 01, 2026 at 19:42 UTC

New EvilTokens service fuels Microsoft device code phishing attacks

By Bill Toulas

AI Summary

EvilTokens, a new malicious kit, integrates device code phishing to hijack Microsoft accounts and enables advanced business email compromise attacks. The service automates OAuth device code abuse, allowing attackers to bypass traditional authentication controls and gain persistent access to corporate Microsoft environments.

Read full article → https://www.bleepingcomputer.com/news/security/new…

Relevance score: 84.0/100

# More from April 02

  1. 1
    WhatsApp warns users of fake app used to distribute spyware The Record
  2. 2
    New CrystalRAT malware adds RAT, stealer and prankware features BleepingComputer
  3. 3
    Apple expands iOS 18 updates to more iPhones to block DarkSword attacks BleepingComputer
  4. 4
    Hackers exploit TrueConf zero-day to push malicious software updates BleepingComputer
  5. 5
    Crypto platform Drift suspends services after millions stolen in security incident The Record
  6. 7
    Mercor confirms security incident tied to LiteLLM supply chain attack The Record
  7. 8
    North Dakota water treatment plant reports March ransomware attack The Record
  8. 9
    'NoVoice' Android malware on Google Play infected 2.3 million devices BleepingComputer
  9. 10
    Is “Hackback” Official US Cybersecurity Strategy? Schneier on Security