Defending SaaS-based applications against ShinyHunters OAuth abuse
In this article In a series of campaigns observed between mid-2025 and mid-2026, Microsoft identified threat actor activity with overlapping tradecraft commonly associated with ShinyHunters, including voice phishing (vishing), supply…