> TritonInfoSec News
Home / Mar 04, 2026 / Story
1
#8 BleepingComputer general March 03, 2026 at 20:59 UTC

Microsoft: Hackers abuse OAuth error flows to spread malware

By Bill Toulas

AI Summary

Microsoft identified hackers abusing legitimate OAuth redirection mechanisms to bypass email and browser phishing protections, targeting government and public-sector organizations. The technique leverages trusted OAuth flows to redirect victims to attacker-controlled infrastructure without stealing authentication tokens, representing an evolution in phishing tactics.

Read full article → https://www.bleepingcomputer.com/news/security/mic…

Relevance score: 80.0/100

# More from March 04

  1. 1
    CISA flags VMware Aria Operations RCE flaw as exploited in attacks BleepingComputer
  2. 2
    Qualcomm Zero-Day Exploited in Targeted Android Attacks Dark Reading
  3. 3
    Iranian Strikes on Amazon Data Centers Highlight Industry’s Vulnerability to Physical Disasters SecurityWeek
  4. 4
    Paint maker giant AkzoNobel confirms cyberattack on U.S. site BleepingComputer
  5. 5
    Dark Reading Confidential: This Threat Hunter Helped Cops Bust Up An African Cybercrime Syndicate Dark Reading
  6. 6
    Possible U.S.-developed exploits linked to first known ‘mass’ iOS attack CyberScoop
  7. 7
    LexisNexis confirms data breach as hackers leak stolen files BleepingComputer
  8. 9
    Quantum Decryption of RSA is Much Closer than Expected SecurityWeek
  9. 10
    Researchers discover suite of agentic AI browser vulnerabilities CyberScoop