Microsoft

Inside an AI‑enabled device code phishing campaign

A new wave of device code phishing shows how threat actors are scaling account compromise using AI and end‑to‑end automation.
DataBreachToday

One-Time Passcodes Are Gateway for Financial Fraud Attacks

Financial institutions have historically relied on one-time passcodes as a primary authentication control for their ...

Post-Quantum Cryptography: The Case For Agility Over Certainty

​For much of the past decade, post-quantum cryptography (PQC) lived primarily in academic journals and standards committees.

Microsoft Confirms New And Widespread 2FA Code Attacks Ongoing

The Microsoft Defender Security Research Team has confirmed that a pervasive new authentication code attack is compromising ...

When attackers already have the keys, MFA is just another door to open

Stolen credentials turn authentication systems into the attack surface. Token shows how wearable biometric authentication ...

Device code phishing attacks surge 37x as new kits spread online

Device code phishing attacks that abuse the OAuth 2.0 Device Authorization Grant flow to hijack accounts have surged more ...
The Hacker News

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

TA416 targeted European governments from mid-2025 using PlugX and OAuth abuse, enabling cyber espionage against EU and NATO ...
IGN

Metaphor: ReFantazio Review

What kinds of lessons do we learn from our favorite pieces of fiction? Are they simply a means for escapism and enjoyment, or can they also have a tangible impact on our lives? Having played nearly ...