CSOonline

Hackers exploit Microsoft OAuth device codes to hijack enterprise accounts

Cybercriminals and state-sponsored hackers are increasingly exploiting Microsoft’s legitimate OAuth 2.0 device authorization process to hijack enterprise accounts, bypassing multifactor authentication ...
Forbes

2FA Code Attacks Surge As Russian Hackers Target Microsoft Users

Microsoft 365 is under attack, China and Russia afflited hackers suspected. Updated December 23 with advice from a mobile security solutions expert regarding the Russian device code attacks targeting ...
Infosecurity-magazine.com

OAuth Device Code Phishing Campaigns Surge Targets Microsoft 365

A surge in phishing campaigns abusing Microsoft’s OAuth device code authorization flow has been observed with multiple threat clusters using the technique to gain unauthorized access to Microsoft 365 ...
Scientific American

U.S. Approves First Device to Treat Depression with Brain Stimulation at Home

In a first, this week the U.S. Food and Drug Administration approved a brain stimulation device designed to treat depression at home. The approval of the first such device for home depression ...
Macworld

Leaked code spills details of mystery Apple smart home accessory

We’ve been tracking rumors about Apple’s push into the smart home market for years, but we’ve yet to see anything come to fruition beyond a new Home app architecture. That may be about to change very ...
TechCrunch

Altman describes OpenAI’s forthcoming AI device as more peaceful and calm than the iPhone

“When people see it, they say, ‘that’s it?… It’s so simple.’” That’s how OpenAI CEO Sam Altman describes how he thinks people will respond to seeing the company’s forthcoming AI hardware device for ...
Bleeping Computer

OAuth Device Code Phishing: Azure vs. Google Compared

Come along with me on a journey as we delve into the swirling, echoing madness of identity attacks. Today, I present a case study on how different implementations of OAuth 2.0, the core authentication ...
Geeky Gadgets

OneNote Links Guide : Tips & Ticks for Effortless Note Organization in 2025

Have you ever found yourself endlessly scrolling through your notes, desperately trying to locate that one key detail buried somewhere in your OneNote notebook? It’s a frustrating experience, ...
Android Police

Pixnapping attack can steal 2FA codes from Android devices using onscreen pixels

Chris has reported for various tech and consumer goods outlets over the past decade, including Android Police and MakeUseOf since early 2022. Previously, he has contributed to outlets such as ...
Wired

A New Attack Lets Hackers Steal 2-Factor Authentication Codes From Android Phones

Android devices are vulnerable to a new attack that can covertly steal two-factor authentication codes, location timelines, and other private data in less than 30 seconds. The new attack, named ...
HotHardware

Android Pixnapping Flaw Affecting Billions Of Devices Can Steal Your Data & 2FA Codes

Android users beware—a new form of Android malware dubbed Pixnapping has been revealed to the public, and in theory, all current Android devices running Android 13 or newer are vulnerable since "the ...