Bleeping Computer

Hackers target Microsoft Entra accounts in device code vishing attacks

The threat actors can now authenticate as the user in Microsoft Entra and access SaaS applications configured with SSO (single sign-on) in the victim's tenant, enabling the theft of corporate data for ...