Live
Microsoft 365 OAuth Phishing: Key Threats and Zero Trust Defenses·MSFT +0.1%Phishing Attacks Exploit Microsoft Copilot: A Growing Cybersecurity Concern·NVDA +3.0%March 2025 Patch Tuesday: Microsoft Addresses 50+ Security Flaws Including 6 Zero-Day Exploits·GOOGL +1.2%Phantom Goblin malware steals Windows credentials via fake job offers and invoices·AMZN +2.9%Russian APT29 Exploits Microsoft 365 Device Code Flow in Sophisticated Consent Phishing Attacks·MSFT +0.1%Fake Chrome update scams surge 240%, target Windows 10 and 11 users with info-stealers·NVDA +3.0%Russian Cyber Attacks Exploit Microsoft 365 Device Code Authentication in Phishing Campaigns·GOOGL +1.2%Exploiting Microsoft Device Code Authentication: An Emerging Threat to Microsoft 365 Security·AMZN +2.9%Microsoft 365 OAuth Phishing: Key Threats and Zero Trust Defenses·MSFT +0.1%Phishing Attacks Exploit Microsoft Copilot: A Growing Cybersecurity Concern·NVDA +3.0%March 2025 Patch Tuesday: Microsoft Addresses 50+ Security Flaws Including 6 Zero-Day Exploits·GOOGL +1.2%Phantom Goblin malware steals Windows credentials via fake job offers and invoices·AMZN +2.9%Russian APT29 Exploits Microsoft 365 Device Code Flow in Sophisticated Consent Phishing Attacks·MSFT +0.1%Fake Chrome update scams surge 240%, target Windows 10 and 11 users with info-stealers·NVDA +3.0%Russian Cyber Attacks Exploit Microsoft 365 Device Code Authentication in Phishing Campaigns·GOOGL +1.2%Exploiting Microsoft Device Code Authentication: An Emerging Threat to Microsoft 365 Security·AMZN +2.9%

Social Engineering

The latest Social Engineering coverage — news, analysis, and updates from the WindowsNews.AI desk.

11 stories in view AI assisted desk updated 11:52 AM
Latest Most Read Breaking
Sort
Advanced Persistent Threats · Cloud Access

Microsoft 365 OAuth Phishing: Key Threats and Zero Trust Defenses

Microsoft 365 has become a prime target for cybercriminals leveraging OAuth phishing attacks, a sophisticated form of credential theft that bypasses traditional security measures. These attacks...

Advertisement
Cybersecurity · Device Authentication

Russian APT29 Exploits Microsoft 365 Device Code Flow in Sophisticated Consent Phishing Attacks

The digital battleground has shifted once again, with cybersecurity researchers uncovering a sophisticated Russian state-sponsored campaign exploiting Microsoft 365's authentication infrastructure....

SE Security Desk·72w ago
Browser Updates · Cybersecurity

Fake Chrome update scams surge 240%, target Windows 10 and 11 users with info-stealers

Windows users are facing a growing threat from sophisticated fake browser update scams that deliver malware through social engineering tactics. These attacks mimic legitimate update prompts to trick...

SE Security Desk·73w ago
Conditional Access · Cybersecurity

Russian Cyber Attacks Exploit Microsoft 365 Device Code Authentication in Phishing Campaigns

Russian state-sponsored hackers are actively exploiting Microsoft 365's device code authentication flow in sophisticated phishing campaigns targeting government and corporate networks. Cybersecurity...

SE Security Desk·74w ago
Cybersecurity · Device Authentication

Exploiting Microsoft Device Code Authentication: An Emerging Threat to Microsoft 365 Security

Introduction In recent months, cybersecurity researchers and Microsoft have uncovered a sophisticated new threat targeting Microsoft 365 (M365) accounts through an unexpected vulnerability: the...

SE Security Desk·74w ago
Cybersecurity · Device Authentication

Protecting Your Microsoft 365: Beware the New Phishing Campaign Targeting Device Code Authentication

Microsoft 365 users are facing a sophisticated new phishing campaign that exploits device code authentication, putting sensitive business data at risk. Security researchers have identified this...

SE Security Desk·74w ago
Cybersecurity · Microsoft 365

Cybersecurity Alert: Ransomware Exploits Target Microsoft Office 365 and Teams Vulnerabilities

Introduction Cybersecurity alarms have been raised due to active exploitation of vulnerabilities and misconfigurations in Microsoft Office 365 and Microsoft Teams. Over recent months, sophisticated...

SE Security Desk·77w ago
Cybersecurity · Email Security

Advanced Phishing Attacks Exploit Microsoft 365: Strategies for Protection

Introduction Phishing scams have long been a persistent threat in the cybersecurity landscape, continually evolving to bypass traditional defenses. Recent reports from Fortinet's FortiGuard Labs...

SE Security Desk·79w ago