CSO Online

Hackers exploit Microsoft OAuth device codes to hijack enterprise accounts

Proofpoint has warned about phishing campaigns abusing legitimate device authorization flow to bypass MFA and gain persistent ...
The Hacker News

Fake WhatsApp API Package on npm Steals Messages, Contacts, and Login Tokens

A malicious npm package posing as a WhatsApp API intercepts messages, steals credentials, and links attacker devices after 56 ...
ABP News on MSN

This WhatsApp scam lets hackers read your chats without OTP or password

A new and dangerous scam is targeting WhatsApp users by misusing the app’s device-linking feature. Cybersecurity experts have flagged this attack, called GhostPairing, as highly deceptive because it ...
Arizona Daily Star

Court to decide if illegal immigrants' use of Social Security numbers is ID theft

WASHINGTON— The Supreme Court agreed Monday to decide whether people picked up on immigration violations also can face charges of identity theft if they use Social Security and other identification ...

Microsoft 365 Accounts Reportedly Breached After Hackers Exploit Legitimate Microsoft OAuth Feature

The surge in attempts to compromise Microsoft 365 accounts has been enabled by readily available phishing tools.