Web Scouter
Back to News
Security NewsMediumIncidentphishing

Microsoft: Hackers abuse OAuth error flows to spread malware

UnknownMar 3, 2026(5 days ago)

Hackers are abusing OAuth redirection to bypass phishing protections and redirect users to malicious pages.

Hackers are abusing the legitimate OAuth redirection mechanism to bypass phishing protections in email and browsers to take users to malicious pages. [...]

Potentially Affected Vendors
Microsoft Azure

Vendors are matched automatically based on AI analysis. Verify with official sources.

Related News

CVE-2026-28364 In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization (runtime/intern.c) enables remote code execution through a multi-phase attack chain. The vulnerability stems from missing bounds validation in the readblock() function, which performs unbounded memcpy() operations using attacker-controlled lengths from crafted Marshal data.

Unknownabout 1 hour ago

OpenAI Codex Security Scanned 1.2 Million Commits and Found 10,561 High-Severity Issues

Unknownabout 18 hours ago

Termite ransomware breaches linked to ClickFix CastleRAT attacks

Unknownabout 18 hours ago

Get Personalized Alerts

Track vendors and receive alerts when security incidents affect your supply chain.

What We Monitor

Security Incidents

Data breaches, ransomware, and unauthorized access

Vulnerabilities

CVEs and vendor security advisories

Compliance Updates

Regulatory changes and certification news

Legal News

Privacy laws and enforcement actions

Vendor Directory

Browse our directory of SaaS vendors with security documentation and compliance information.