Microsoft announced that consent phishing protections including OAuth app publisher verification and app consent policies are now generally available in Office 365. Microsoft says that it’s rolling out three updates designed to bolster the security of the Office 365 app ecosystem. These protections are designed to defend Office 365 users from an application-based phishing attack variant known as consent phish. Microsoft warned customers in July of threat actors using Office 365 OAuth applications in consent phished attacks as part of Business Email Compromise (BEC) fraud schemes.
Source: https://www.bleepingcomputer.com/news/security/microsoft-adds-consent-phishing-protection-to-office-365/