Device code phishing attacks surge 37x as new kits spread online

Device code phishing attacks that abuse the OAuth 2.0 Device Authorization Grant flow to hijack accounts have surged more ...

New EvilTokens service fuels Microsoft device code phishing attacks

A new malicious kit called EvilTokens integrates device code phishing capabilities, allowing attackers to hijack Microsoft ...
The Hacker News

Device Code Phishing Hits 340+ Microsoft 365 Orgs Across Five Countries via OAuth Abuse

Device code phishing targets 340+ Microsoft 365 orgs since Feb 2026 via OAuth abuse, enabling persistent token hijacking and ...

Connected Devices Are Forcing A Rethink Of Digital Trust

Embedded devices in cars, aircraft, and industrial systems need security frameworks built for machines, not people. AI is ...
Medical Design & Outsourcing

FDA removes pediatric VADs from device shortage list, adds others

The FDA has removed pediatric ventricular assist bypass devices (VADs) from its device shortage list in an update this month.
SecurityWeek

CrewAI Vulnerabilities Expose Devices to Hacking

Four vulnerabilities in CrewAI could be chained together via prompt injection for sandbox escape, remote code execution, and ...

Why your QR Codes shouldn’t always lead to the same place

Uniqode reports that dynamic QR Codes can route users to different destinations based on context, enhancing marketing ...
MediaNama

What DoT’s continued push for source code access mean for manufacturers

The March 2026 ITSAR update suggests that makers of IoT devices like vehicle tracking devices have to provide source code ...

Firewalla Supports AmneziaWG VPN Server And Smarter Device Protection

Latest version of the Firewalla app supports AmneziaWG VPN Server, a breakthrough VPN protocol that bypasses blocked networks ...
The Hacker News

Apple Expands iOS 18.7.7 Update to More Devices to Block DarkSword Exploit

Apple expanded iOS 18.7.7 on April 1, 2026 after DarkSword disclosure, enabling auto security updates across more devices.