Cybercriminals are using malicious Microsoft OAuth apps, which appear to be Adobe and DocuSign apps, to deliver malware and steal Microsoft 365 accounts credentials. The highly targeted campaigns use compromised email accounts to send phishing emails to businesses in the US and Europe. If permissions are granted, the attackers gain access to limited personal information and can redirect users to phishing forms or distribute malware.

Key Updates on Attacks, Vulnerabilities, & Data Breaches
The cybersecurity newsletter discusses the evolving threats such as advanced ransomware attacks and state-sponsored cyber activities. The issue also covers how technologies like AI, machine