Attackers are targeting Microsoft Office 365 users with a Coinbase-themed attack, aiming to take control of their inboxes via OAuth. OAuth is an open standard for token-based authorization, which enables a user s account information to be used by third-party services without exposing their password. These types of consent attacks are not new, but the tactic is gaining ground, said researchers in an analysis. Microsoft has previously warned of risky OAuth apps, in July warning that widespread remote working and the increased use of collaboration apps are leading attackers to ramp up attacks.
Source: https://threatpost.com/office-365-oauth-attack-coinbase/160337/