Hackers target Microsoft Entra accounts in device code vishing attacks

Published on February 19, 2026

Threat actors are targeting technology, manufacturing, and financial organizations in campaigns that combine device code phishing and voice phishing (vishing) to abuse the OAuth 2.0 Device Authorization flow and compromise Microsoft Entra accounts. [...]

Continue reading on website
Other news

From Exposure to Exploitation: How AI Collapses Your Response Window

February 19, 2026
We’ve all seen this before: a developer deploys a new cloud workload and grants overly broad permissions just to keep the sprint moving. An engineer generates a "temporary" API key for testing and forgets to revoke it. In the past, these were minor operational risks, debts you’d eventually pay down during a slower cycle.In 2026, “Eventually” is NowBut today, within minutes, AI-powered

Texas sues TP-Link over Chinese hacking risks, user deception

February 19, 2026
Texas sued networking giant TP-Link Systems, accusing the company of deceptively marketing its routers as secure while allowing Chinese state-backed hackers to exploit firmware vulnerabilities and access users' devices. [...]