Cybercriminals Use Malicious OAuth Apps to Target Microsoft 365 Accounts

Cybercriminals are using malicious OAuth applications disguised as Adobe and DocuSign apps to distribute malware and steal Microsoft 365 account credentials. These OAuth applications deceive users into believing they are legitimate, allowing attackers to access sensitive information from Microsoft 365 accounts. The article does not provide specific technical details or the real impacts.