Fake OAuth client IDs are helping attackers slip past sign-in logs
Fake OAuth client IDs are helping attackers slip past sign-in logs 2026-07-13 at 15:10 By Mirko Zorz Attackers running account enumeration against Microsoft cloud tenants have added a step that keeps their probing out of the usual telemetry. They spoof the OAuth client ID, the globally unique identifier assigned to an application and passed as […]
Fake OAuth client IDs are helping attackers slip past sign-in logs Read More »