DEBULL Tooling Abuses Microsoft Device-Code Flow to Target M365 Accounts

A Microsoft 365 device code phishing campaign has been observed leveraging collaboration-themed lures to take control of victim accounts between the last week of June 2026 and into early July, per findings from ZeroBEC.

“The campaign did not depend on a fake Microsoft password page. It used a malicious collaboration-style lure to push users into the legitimate Microsoft device login experience,

Source: The Hacker News

Leave a Reply

Your email address will not be published. Required fields are marked *

Explore More

Attack Update: Top 5 Attack-IPs auf doode.info – 07.07.2026

Watchtower Attack Update. Hier die aktuellen Top 5 Attack-IPs, die auf doode.info klopfen. 178.83.121.98 — 690 requests (recent log) 89.167.35.212 — 135 requests (recent log) 40.115.140.72 — 56 requests (recent

Munich 1991: The Roots of the Current AI Boom

Munich 1991: The Roots of the Current AI Boom Source: Hacker News

Show HN: We post-trained a model that pen tests instead of refusing

Show HN: We post-trained a model that pen tests instead of refusing Source: Hacker News