The Microsoft Defender Security Research Team has confirmed that a pervasive new authentication code attack is compromising ...

A vulnerability in Microsoft’s multifactor authentication (MFA) system has been uncovered by cybersecurity firm Oasis Security, allowing attackers to bypass security measures and access sensitive data ...

Microsoft Authenticator users are facing a significant change as the app's password management features are being discontinued, with all stored passwords set for deletion on August 1st. This move ...

Microsoft Authenticator makes it easy to protect and log in to your online accounts with multi-factor authentication (MFA). It's free, and you don't need a Microsoft account to use it. Even though the ...

Microsoft Defender Research observed a large-scale credential theft campaign that exemplifies this trend, using code of ...

Device code social engineering attacks BleepingComputer has learned from multiple sources that threat actors have begun using vishing social engineering attacks that no longer require ...

A new phishing-as-a-service (PhaaS) campaign is abusing Microsoft’s device code authentication flow to gain unauthorized access to user accounts. Sekoia researchers first spotted the toolkit ...

The issue could allow threat actors to brute force MFA authentication codes for Outlook, Teams, and Azure access with 50% accuracy. Microsoft may have silently fixed a problem with its MFA ...