Forum Discussion

JasonCohen1892's avatar
Jul 14, 2021

New Blog Post | Microsoft delivers comprehensive solution to battle rise in consent phishing emails

Microsoft delivers comprehensive solution to battle rise in consent phishing emails | Microsoft Security Blog

This blog offers a look into the current state of consent phishing emails as an initial attack vector and what security administrators can do to prevent, detect, and respond to these threats using advanced solutions like Microsoft Defender for Office 365. Consent phishing attacks aim to trick users into granting permissions to malicious cloud apps in order to gain access to user’s legitimate cloud services. The consent screen displays all permissions the app receives; and because the cloud services are legitimate, unsuspecting users accept the terms or hit ‘enter,’ which grants the malicious app those requested permissions.

No RepliesBe the first to reply

Resources