Device Code Phishing Attacks Surge 37x in 2024 Due to New Kits

Device code phishing attacks exploiting the OAuth 2.0 Device Authorization Grant flow to hijack accounts have increased by over 37 times in 2024. These attacks leverage phishing kits that automate the process, enabling threat actors to bypass multi-factor authentication (MFA) and gain unauthorized access to cloud environments. The surge is attributed to the proliferation of these kits on underground forums and criminal marketplaces. No specific threat actors, affected organizations, or CVE IDs were mentioned in the report. The primary impact includes account takeovers, data breaches, and potential lateral movement within compromised networks.