Storm-2372 exploits device code multi-factor authentication flow.
Microsoft’s Threat Intelligence Center has discovered an ongoing device code phishing campaign by threat actor group identified as Storm-2372. This campaign has been active since August 2024, using messaging apps such as WhatsApp, Signal and Microsoft Teams to target government, non-governmental organizations (NGOs), information technology (IT) services and technology, defense, telecommunications, health, higher education, and […]
