Have you ever heard about the illicit grant consent attack in Microsoft 365? It’s a consent phishing attack where a malicious attacker creates an Azure-registered application asking for basic permission such as reading email address or extensive permissions like accessing OneDrive. Stay tuned for more blogs in Office 365 Cybersecurity blog series. On Day 5 of Cybersecurity awareness month, learn to conceal your organization by blocking user consent to suspicious applications.
