Cursor AI Code Editor Fixed Flaw Allowing Attackers to Run Commands via Prompt Injection

Attackers Use Fake OAuth Apps with Tycoon Kit to Breach Microsoft 365 Accounts

AI-Generated Malicious npm Package Drains Solana Funds from 1,500+ Before Takedown

You Are What You Eat: Why Your AI Security Tools Are Only as Strong as the Data You Feed Them

Storm-2603 Deploys DNS-Controlled Backdoor in Warlock and LockBit Ransomware Attacks

Cybersecurity researchers have detailed a new cluster of activity where threat actors are impersonating enterprises with fake Microsoft OAuth applications to facilitate credential harvesting as part of account takeover attacks.
"The fake Microsoft 365 applications impersonate various companies, including RingCentral, SharePoint, Adobe, and Docusign," Proofpoint said in a Thursday report.
The

Headline

Attackers Use Fake OAuth Apps with Tycoon Kit to Breach Microsoft 365 Accounts

The Hacker News: Latest News