ARToken M365 Phishing Panel Exploits OAuth Device Code Flow
A sophisticated phishing toolkit named ARToken is actively targeting Microsoft 365 users by exploiting OAuth’s legitimate Device Authorization Flow (Device Code Flow). The panel automates token theft through adversary-in-the-middle attacks, enabling attackers to bypass multi-factor authentication, c