The latest attack attempts to trick Office 365 users that use Coinbase into giving access to their mailbox via a Consent app rather than trying to steal their credentials. Once access is granted, the app now has access to read the victims emails, delete messages, and more. This kind of attack isnt new but is instead gaining ground. Weve seen Consent app-based attacks since the beginning of this year. Users need to be educated via Security Awareness Training that they should be looking for these kinds of attacks.”]