Bleeping Computer

Microsoft found TikTok Android flaw that let hackers hijack accounts

Microsoft found and reported a high severity flaw in the TikTok Android app in February that allowed attackers to "quickly and quietly" take over accounts with one click by tricking targets into ...
HotHardware

Microsoft Spies A One-Click Account Hijacking Exploit In TikTok's Android App

A new report by Microsoft details a vulnerability in the TikTok Android app that threat actors could have exploited to hijack user accounts with a single click. The vulnerability appears in the ...

Popular Microsoft Outlook add-in hijacked to try and steal user accounts

A Microsoft Outlook add-in was abandoned and taken over by hackers, who used it to collect email accounts and banking data.
CSOonline

Hackers exploit Microsoft OAuth device codes to hijack enterprise accounts

Cybercriminals and state-sponsored hackers are increasingly exploiting Microsoft’s legitimate OAuth 2.0 device authorization process to hijack enterprise accounts, bypassing multifactor authentication ...
Regtechtimes on MSN

Security researchers uncover APT28 campaign exploiting newly disclosed Microsoft Office flaw

Cybersecurity investigators have identified a new cyberattack campaign connected to the Russia-linked hacking group APT28, ...