EvilTokens - Geek Feed

Device code phishing attacks surge 37x as new kits spread online

April 7, 2026April 7, 2026 geekfeed0Tagged Access Token, EvilTokens, Kit, OAuth, OAuth Tokens, phishing, Phishing-as-a-Service

Device code phishing attacks that abuse the OAuth 2.0 Device Authorization Grant flow to hijack accounts have surged more than 37 times this year. In this type of attack, the threat actor sends a device authorization request to a service provider and receives a code, which is sent to the victim under various pretexts. Next, the […]

4 mins read

New EvilTokens service fuels Microsoft device code phishing attacks

April 4, 2026April 4, 2026 geekfeed0Tagged EvilTokens, microsoft, PhaaS, phishing, Phishing Kit, Phishing-as-a-Service

A new malicious kit called EvilTokens integrates device code phishing capabilities, allowing attackers to hijack Microsoft accounts and provide advanced features for business email compromise attacks. The kit is sold to cybercriminals over Telegram and is under continuous development, its author stating that they plan to extend support for Gmail and Okta phishing pages. Device […]

2 mins read