Advertisement
HIGH
Threat Intel
EvilTokens PhaaS: Bypassing MFA via OAuth Device Code Flow
The EvilTokens platform has compromised 340+ Microsoft 365 organizations by weaponizing OAuth Device Code Flows to bypass multi-factor authentication.
Runtime Rebel Intel
4 min read·May 19, 2026
TH
HIGH
Threat Intel
EvilTokens Fuels Microsoft Device Code Phishing & BEC
New EvilTokens service automates Microsoft device code phishing, enabling account takeover and sophisticated business email compromise (BEC) attacks. Learn how to defend.
Runtime Rebel Intel
5 min read·Apr 1, 2026