TI Mindmap HUB
Threat Intelligence Report

Microsoft OAuth Device Code Phishing

📅 March 13, 2026 📰 any.run 🔍 0 CVE(s) referenced

A surge in OAuth Device Code phishing campaigns is enabling attackers to hijack Microsoft 365 accounts by abusing legitimate authentication flows and issuing access tokens—without stealing credentials—making detection far more challenging for security teams.

vendor

Sign in to access the full report including:
detailed analysis, IOCs, MITRE ATT&CK mapping, and STIX bundle.

🔐 Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

📊 Visual Mindmap
🎯 IOC Extraction
⚔️ MITRE ATT&CK TTPs
📦 STIX 2.1 Bundle