Device Code Phishing Campaigns See 37x Spike via Advanced Criminal Kits

Original URL: www.bleepingcomputer.com/news/secu… Summary: Global threat researchers have documented a staggering 37-fold increase in sophisticated device code authentication phishing campaigns targeting cloud environment credentials. Historically a tool reserved for elite nation-state threat vectors, the rapid commercialization of 18 distinct pre-packaged phishing kits on underground forums has democratized the technique for mainstream cybercriminals. The attack method exploits the legitimate OAuth device code flow, tricking users into inputting a single activation code into genuine verification pages, which immediately generates full enterprise tenant access tokens that bypass traditional multi-factor endpoint protection rings. Keywords: #Phishing #OAuth #DeviceCode #MFA_Bypass #CloudSecurity #CyberCrime #AccessManagement #CredentialTheft