Threat actors misuse OAuth applications to automate financially driven attacks

Author(s): Microsoft Threat Intelligence
Organization: Microsoft

Open article directly Open article on Archive.org

2025-05-21 ⋅ Microsoft ⋅ Steven Masada
Disrupting Lumma Stealer: Microsoft leads global action against favored cybercrime tool
Lumma Stealer

2025-04-23 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Understanding the threat landscape for Kubernetes and containerized assets

2025-04-08 ⋅ Microsoft ⋅ Microsoft Threat Intelligence
Exploitation of CLFS zero-day leads to ransomware activity
RansomEXX

Propose Change Threat actors misuse OAuth applications to automate financially driven attacks