Tag: #cloudsecurity
Microsoft 365 OAuth attack incidents have surged in recent years, making the platform one of the major targets for cybercriminals. Microsoft’s 2024 Digital Defense Report states that over 600 million cyberattacks occur daily, covering threats such as ransomware, phishing, and identity-based attacks. Between July 2023 and June 2024, human-operated ransomware incidents increased by 275%, showing […]
Cybersecurity researchers have uncovered a new and highly sophisticated campaign by the North Korean Advanced Persistent Threat (APT) group Kimsuky, named DEEP#DRIVE. This campaign demonstrates the evolving landscape of cyber threats, making it essential reading for cybersecurity professionals, IT administrators, business leaders, and government agencies. At its core, DEEP#DRIVE exploits widely trusted platforms like Dropbox, […]
The Microsoft device code phishing attack is a sophisticated cyber threat that manipulates the OAuth device authorization flow to bypass multi-factor authentication (MFA) and gain unauthorized access to Microsoft 365 accounts. According to recent cybersecurity reports, over 55% of phishing attacks in 2024 have targeted Microsoft 365 users, emphasizing the growing vulnerability of cloud-based authentication […]