security — 2026-03

1 result(s)

• security: OAuth redirection abuse enables phishing and malware delivery
  2026-03-02 · security · timeframe: 2026-03 · tags: security, oauth, phishing, malware, identity, redirect-abuse

  Microsoft reports attackers abusing OAuth redirection flows to route users from legitimate sign-in pages to attacker-controlled infrastructure. The technique uses trusted authentication redirects as a delivery path for phishing and malware.

  • Source: Microsoft Security Blog