In February 2026, a phishing-as-a-service (PhaaS) platform
called EvilTokens went live. Within five weeks, it had compromised
more than 340 Microsoft 365 organizations across five
countries. The targets of the platform received a message
asking them to enter a short code at microsoft.com/devicelogin and
complete their normal MFA challenge, then walked away believing
they had verified a
Read more https://thehackernews.com/2026/05/the-new-phishing-click-how-oauth.html
