security: OAuth redirection abuse enables phishing and malware delivery

Microsoft reports attackers abusing OAuth redirection flows to route users from legitimate sign-in pages to attacker-controlled infrastructure. The technique uses trusted authentication redirects as a delivery path for phishing and malware.

• Source: Microsoft Security Blog