Malicious OAuth 2.0 applications are increasingly using malicious OAuth applications to siphon data and access sensitive information from cloud platforms. Microsoft introduced a Publisher Verification mechanism for Microsoft Partner Network accounts in Azure AD to help stop malicious apps targeting its cloud platforms, such as Office 365. Microsoft has had “limited success” in reducing cloud malware intrusions, security firm Proofpoint says. Security experts say many challenges remain, and many challenges are still to be overcome. Microsoft did not immediately reply to a request for comment.”]
Source: https://www.cuinfosecurity.com/mitigating-risks-malicious-oauth-apps-a-16532