knowbe4-threat-labs

Blog All categories All authors All tags
Preview image for a blog post

M365 MFA Bypass: Deconstructing the OAuth 2.0 Device Code Phishing Campaign

Deep dive into a sophisticated phishing campaign abusing OAuth 2.0 Device Authorization Grant flow to bypass M365 MFA and steal tokens for persistent access.