ByteBrief
We're a portrait publication through and through. Turn your phone back and your briefing picks up right where you left it.
(We tried widescreen once. It wasn't us.)

Attackers are spoofing OAuth client IDs to validate stolen Microsoft Entra ID credentials without generating successful sign-in events. Proofpoint identified two campaigns, UNK_OutFlareAZ and UNK_pyreq2323, using this technique since December 2025. The method exploits different error responses to infer valid usernames and passwords while evading detection.
Tap to vote and see what everyone thinks.
Summary by ByteBrief