The Hacker News

Device Code Phishing Hits 340+ Microsoft 365 Orgs Across Five Countries via OAuth Abuse

Device code phishing targets 340+ Microsoft 365 orgs since Feb 2026 via OAuth abuse, enabling persistent token hijacking and ...
CSO Online

EvilTokens abuses Microsoft device code flow for account takeovers

The phishing-as-a-service toolkit leverages legitimate authentication to capture tokens and access Microsoft 365 services.
Microsoft

Inside an AI‑enabled device code phishing campaign

A new wave of device code phishing shows how threat actors are scaling account compromise using AI and end‑to‑end automation.
KSAT

Microsoft Authenticator is ending password autofill soon. How to set up a passkey before Aug. 1

FILE - A Microsoft sign and logo are pictured at the company's headquarters, Friday, April 4, 2025, in Redmond, Wash. (AP Photo/Jason Redmond, File) (Jason Redmond ...
AOL

Why Microsoft Authenticator is changing and how to set up a passkey before the deadline

Microsoft Authenticator users are facing a significant change as the app's password management features are being discontinued, with all stored passwords set for deletion on August 1st. This move ...
Yahoo Finance

Microsoft will soon delete your Authenticator passwords. Here are 3 password manager alternatives

Users of Microsoft apps are having a rough year. First, in May, the Windows maker shut down the popular VOIP calling app, Skype, for good. Microsoft said it was done so that the company could focus on ...

Top 5 Best Multi-Factor Authentication Software in 2026

Compare the best multi-factor authentication software in 2026. See which MFA tools offer adaptive security, easy setup, and ...