Current campaigns are allowing even novice attackers to scoop up authentication tokens with increasing frequency, bypassing what used to be considered foolproof protection. Cybersecurity experts are ...
The FBI issued an advisory on Thursday about Kali365, a Telegram-based phishing-as-a-service platform first observed in April 2026 that enables cybercriminals to capture OAuth tokens and gain ...
Device code phishing attacks that abuse the OAuth 2.0 Device Authorization Grant flow to hijack accounts have surged more than 37 times this year. In this type of attack, the threat actor sends a ...
An n8n community node package for DocuSign — covering eSignature, Web Forms, Monitor, Click (Clickwrap), Maestro (Workflow Builder), Navigator (Agreement ...
Multiple threat actors are compromising Microsoft 365 accounts in phishing attacks that leverage the OAuth device code authorization mechanism. Attackers trick victims into entering a device code on ...
Concord Horizon is an AI first platform where natural conversation replaces traditional contract software. Instead of navigating menus, users ask questions and Horizon responds with contextual ...
March 2026 update: Every year, there is an observable uptick in tax-themed campaigns as Tax Day (April 15) approaches in the United States, and 2026 is no different: When tax season becomes ...
We have recently uncovered a large-scale, multi-phase campaign that adds a novel technique to traditional phishing tactics by joining an attacker-operated device to an organization’s network to ...