Tycoon2FA hijacks Microsoft 365 accounts via device-code phishing

The Tycoon2FA phishing kit now supports device-code phishing attacks and abuses Trustifi click-tracking URLs to hijack ...
Cyber Daily

Australian Signals Directorate warns of device code phishing activity targeting Microsoft 365 users

Aussie victims are being tricked into giving malicious actors access to their Microsoft 365 environments with the help of AI ...
Information Age

Australian Microsoft users warned of code phishing threat

Australia’s national cybersecurity agency says users of Microsoft 365 software should be wary of a "growing threat" from ...
Infosecurity-magazine.com

Russian Hackers Target Microsoft 365 Accounts with Device Code Phishing

Multiple Russian nation-state actors are targeting sensitive Microsoft 365 accounts via device code authentication phishing, a new analysis by Volexity has revealed. The firm first observed this ...
WinBuzzer

Microsoft Shifts Engineers from Claude Code to GitHub Copilot CLI

Microsoft is moving Experiences + Devices engineers from Claude Code to GitHub Copilot CLI by June 30, while keeping its ...
TechBooky

Microsoft Initiates Claude Code Licenses Termination

Claude Code was first made available by Microsoft in December, and thousands of its own developers were invited to use ...
Hosted on MSN

Microsoft 365 Copilot Gains Power from GPT-5.5 and Interface Upgrades

The May 2026 Microsoft 365 Copilot update integrates GPT-5.5 for sharper reasoning, faster responses, and deeper context ...
CSOonline

EvilTokens abuses Microsoft device code flow for account takeovers

A new phishing-as-a-service (PhaaS) campaign is abusing Microsoft’s device code authentication flow to gain unauthorized access to user accounts. Sekoia researchers first spotted the toolkit ...

Microsoft cancels Claude Code licenses, shifts developers to GitHub Copilot CLI

Microsoft cancels Claude Code licenses, pushing its devs to GitHub Copilot CLI.