Threat actors misuse OAuth applications to automate financially driven attacks

Author(s): Microsoft Threat Intelligence
Organization: Microsoft

Open article directly Open article on Archive.org

2025-07-22 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Disrupting active exploitation of on-premises SharePoint vulnerabilities
Storm-2603

2025-06-30 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Jasper Sleet: North Korean remote IT workers’ evolving tactics to infiltrate organizations

2025-05-27 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
New Russia-affiliated actor Void Blizzard targets critical sectors for espionage
Void Blizzard

Propose Change Threat actors misuse OAuth applications to automate financially driven attacks