Phishing for Codes: Russian Threat Actors Target Microsoft 365 OAuth Workflows

2025-04-22 (Back to Inventory)

Phishing for Codes: Russian Threat Actors Target Microsoft 365 OAuth Workflows

Author(s): Charlie Gardner, Josh Duke, Matthew Meltzer, Sean Koessel, Steven Adair, Tom Lancaster
Organization: Volexity

UTA0352 UTA0355

Open article directly

2025-10-08 ⋅ Volexity ⋅ Callum Roxan, Killian Raimbaud, Steven Adair
APT Meets GPT: Targeted Operations with Untamed LLMs
UTA0388

2025-02-13 ⋅ Volexity ⋅ Charlie Gardner, Steven Adair, Tom Lancaster
Multiple Russian Threat Actors Targeting Microsoft Device Code Authentication

2024-11-22 ⋅ Volexity ⋅ Sean Koessel, Steven Adair, Tom Lancaster
The Nearest Neighbor Attack: How A Russian APT Weaponized Nearby Wi-Fi Networks for Covert Access
APT28

Propose Change Phishing for Codes: Russian Threat Actors Target Microsoft 365 OAuth Workflows

Related Articles

Phishing for Codes: Russian Threat Actors Target Microsoft 365 OAuth Workflows