Attackers Exploit Applications to Target Microsoft 365 and GitHub Users

Attackers are exploiting applications to redirect users to phishing and malware distribution sites as part of two campaigns targeting Microsoft 365 and GitHub. The attacks use OAuth techniques to compromise user accounts. The impacts include redirection to malicious sites, endangering users' personal and professional information.