New ConsentFix attack hijacks Microsoft accounts via Azure CLI

A new variation of the ClickFix attack dubbed 'ConsentFix' abuses the Azure CLI OAuth app to hijack Microsoft accounts ...
Microsoft

Imposter for hire: How fake people can gain very real access

Fake employees are an emerging cybersecurity threat. Learn how they infiltrate organizations and what steps you can take to ...
CSO Online

Meet ConsentFix, a new twist on the ClickFix phishing attack

What’s new in a ConsentFix attack is that the attack happens entirely inside a browser, say the researchers, which removes one of the key detection opportunities because the attack doesn’t touch an ...