Microsoft adds consent phishing protection to Office 365

[[correlate]]

Content source

https://www.bleepingcomputer.com/news/security/microsoft-adds-consent-phishing-protection-to-office-365/

Microsoft announced that consent phishing protections including OAuth app publisher verification and app consent policies are now generally available in Office 365.

These protections are designed to defend Office 365 users from an application-based phishing attack variant known as consent phishing.
In this type of phishing attack, targets are tricked into providing access to their Office 365 accounts by granting permissions to malicious Office 365 OAuth apps (web apps attackers register with an OAuth 2.0 provider).
Microsoft says that it's rolling out three updates designed to bolster the security of the Office 365 app ecosystem including:

Microsoft adds consent phishing protection to Office 365

Microsoft announced that consent phishing protections including OAuth app publisher verification and app consent policies are now generally available in Office 365.

www.bleepingcomputer.com

 

[Andy Ful]

Bearing in mind how many new security improvements were done for Office 365, it had to be a very dangerous application.

 

[Cortex]

I have a 365 licence but it only resides on my other half's lappy as she needs it for work - Use SoftMaker on this PC, for several reasons one is I can actually remove SoftMaker unlike MS 365

 

[[correlate]]

Bearing in mind how many new security improvements were done for Office 365, it had to be a very dangerous application.

You are very observant, Andy Ful :).