Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
msrcMsrcMSRC:2CFF43FC8C90A9FB4DD5DA0A2DADE9AE
HistoryJan 31, 2023 - 10:15 a.m.

Microsoft Investigation – Threat actor consent phishing campaign abusing the verified publisher process

2023-01-3110:15:00
msrc-blog.microsoft.com
16
microsoft
investigation
phishing campaign
verified publisher
azure
mcpp
threat actors
fraudulently impersonating
JSON

Summary On December 15th, 2022, Microsoft became aware of a consent phishing campaign involving threat actors fraudulently impersonating legitimate companies when enrolling in the Microsoft Cloud Partner Program (MCPP) (formerly known as Microsoft Partner Network (MPN)). The actor used fraudulent partner accounts to add a verified publisher to OAuth app registrations they created in Azure …

Microsoft Investigation - Threat actor consent phishing campaign abusing the verified publisher process Read More »

JSON