Jalisco & OmegaLord: Deep Dive into Advanced Microsoft 365 Phishing Tactics via Device Code Flow and OAuth Abuse
Jalisco and OmegaLord phishing kits exploit Microsoft 365 device code flows and OAuth to bypass MFA, gain persistent access, and compromise accounts.