Microsoft researchers: OAuth app used to automate phishing attacks and mine cryptocurrency
Microsoft researchers have discovered a series of cyber attacks where OAuth applications are used to automatically conduct phishing attacks, disrupt company emails, and secretly mine cryptocurrency. The hackers' targets are accounts that lack strong authentication mechanisms. They create new OAuth applications with high permissions through hijacked accounts, allowing malware to access systems without the user's knowledge.
In one case, an attacker with the username Storm-1283 used OAuth to deploy virtual machines for cryptocurrency mining. Depending on the duration of the attack, losses ranged from $10,000 to $1.5 million.
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
XRP Lawsuit: Is Ripple Postponing Settlement to Prep for IPO?
Bitcoin ETFs See $83M Inflow, Ethereum Faces Outflows
Bitcoin spot ETFs gained $83M in inflows for 6 days straight, while Ethereum ETFs saw 13 days of outflows.Ethereum ETFs See Continued OutflowsShifting Investor Sentiment Between BTC and ETH
South Korea’s Crypto Investors Surge Past 9.6M in 2024
South Korea's crypto investors hit 9.66 million in 2024, with 50+ age group dominating high-value holdings.Wealthy Individuals Lead the Crypto BoomFuture Outlook for South Korea’s Crypto Market
Bernstein Slashes 2025 Outlook for BTC Miners
Bernstein cuts 2025 price targets for Bitcoin miners IREN, CleanSpark, and Riot, citing weak performance and AI-driven investor shift.AI and High-Performance Computing Steal the SpotlightOutlook for Bitcoin Miners in 2025
Trending news
MoreCrypto prices
More
