Security News Device Code Phishing Hits 340+ Microsoft 365 Orgs Across Five Countries via OAuth Abuse TheHackerNews Daniel Bender 25 Mar 2026 Device code phishing targets 340+ Microsoft 365 orgs since Feb 2026 via OAuth abuse, enabling persistent token hijacking and account takeover.
