Exchange servers abused for spam through malicious OAuth applications

Categories: News

Tags: Exchange

Tags: OAuth

Tags: spam

Tags: MFA

Tags: Transport rules

Tags: connector

Threat actors have been using malicious OAuth applications to abuse Microsoft Exchange servers for their spam campaign.

(Read more…)

The post Exchange servers abused for spam through malicious OAuth applications appeared first on Malwarebytes Labs.

Read more

Microsoft will disable Basic authentication for Exchange Online in less than a month

Categories: News

Tags: Basic Auth

Tags: Exchange online

Tags: modern authentication

Tags: MFA

Tags: SAML

Tags: CBA

Tags: smart card

Tags: OAuth

The end of Basic authentication for Exchange Online is almost upon us. Are you ready?

(Read more…)

The post Microsoft will disable Basic authentication for Exchange Online in less than a month appeared first on Malwarebytes Labs.

Read more

Gmail-linked Facebook accounts vulnerable to attack using a chain of bugs—now fixed

Credit to Author: Pieter Arntz| Date: Tue, 17 May 2022 19:37:25 +0000

A researcher has combined a chain of bugs into an attack method that makes it possible to take over Facebook accounts linked to Gmail.

The post Gmail-linked Facebook accounts vulnerable to attack using a chain of bugs—now fixed appeared first on Malwarebytes Labs.

Read more

Should SaaS Companies Publish Customers Lists?

Credit to Author: BrianKrebs| Date: Mon, 22 May 2017 20:53:32 +0000

A few weeks back, HR and financial management firm Workday.com sent a security advisory to customers warning that crooks were sending targeted malware phishing attacks at customers. At the same time, Workday is publishing on its site a list of more than 800 companies that use its services, making it relatively simple for attackers to chose their […]

Read more