Jump to content
  • Sign Up
×
×
  • Create New...

[H4ckN3ws]The New Phishing Click: How OAuth Consent Bypasses MFA

ThaHaka

By ThaHaka,
in World News

 Share

Recommended Posts

  • Diamond Member
ThaHaka Slayer

ThaHaka 0

Posted
  • Diamond Member
Posted

This is the hidden content, please

In February 2026, a phishing-as-a-service (PhaaS) platform called EvilTokens went live. Within five weeks, it had compromised more than 340
This is the hidden content, please
365 organizations across five countries.  The targets of the platform received a message asking them to enter a short code at
This is the hidden content, please
.com/devicelogin and complete their normal MFA challenge, then walked away believing they had verified a

This is the hidden content, please

0

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Unfortunately, your content contains terms that we do not allow. Please edit your content to remove the highlighted words below.
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing

  • Vote for the server

    To vote for this server you must login.

    Jim Carrey Flirting GIF

  • Recently Browsing   0 members

    • No registered users viewing this page.

Important Information

Privacy Notice: We utilize cookies to optimize your browsing experience and analyze website traffic. By consenting, you acknowledge and agree to our Cookie Policy, ensuring your privacy preferences are respected.

  I accept