Multiple Russian nation-state actors, including the group Storm-2372, are conducting a sophisticated spear-phishing campaign that exploits device code authentication to gain unauthorized access to Microsoft 365 accounts, posing a significant threat to global critical infrastructure.
View full story…
Russian Nation-State Actors Target Microsoft 365 Accounts With Device Code Phishing
