https://cybercrime.club/tags/phishing/Infrastructure security news for people who build infrastructure.Hugo -- gohugo.ioen-usSun, 05 Apr 2026 22:09:11 -0400https://cybercrime.club/posts/device-code-phishing-37x-surge-eviltokens-oauth-m365/Sun, 05 Apr 2026 22:09:11 -0400https://cybercrime.club/posts/device-code-phishing-37x-surge-eviltokens-oauth-m365/Device code phishing attacks exploiting the OAuth 2.0 Device Authorization Grant have surged 37x in 2026, driven by turnkey PhaaS kits like EvilTokens that bypass MFA and compromise enterprise M365 tenants.Threats