CSOonline

Hackers exploit Microsoft OAuth device codes to hijack enterprise accounts

Cybercriminals and state-sponsored hackers are increasingly exploiting Microsoft’s legitimate OAuth 2.0 device authorization process to hijack enterprise accounts, bypassing multifactor authentication ...
ZDNet

Is your Roku or Fire TV streaming device tracking you? It's possible - how I put an end to it

Roku, Fire, and Chromecast TVs may collect viewing, usage, and screen‑content data. You can disable or limit data collection via privacy/ACR settings. Full privacy requires disconnecting the TV from ...
Bleeping Computer

Microsoft 365 accounts targeted in wave of OAuth phishing attacks

Multiple threat actors are compromising Microsoft 365 accounts in phishing attacks that leverage the OAuth device code authorization mechanism. Attackers trick victims into entering a device code on ...
TechRadar

State actors are abusing OAuth device codes to get full M365 account access - here's what we know

When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. Proofpoint reports phishing surge abusing Microsoft OAuth 2.0 device code flow Victims enter ...
Forbes

Microsoft Updates Windows ‘To Stop Users From Downloading Google Chrome’

Here we go again. “Microsoft is trying a new way to stop users from downloading Google Chrome.” We have seen this before. Just as with Apple, the two tech giants are pushing hard to keep users within ...