Consent (OAuth) phishing…from attack to detect to prevent with Microsoft Defender for Cloud Apps

The attack

Microsoft Defender for Cloud Apps (MDCA)

Azure AD




Chief Technology Officer @ Nedscaper

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

$APE Coin (@apecoin) by @BoredApeYC is now enabled on

#Introducing… Garreth Cameron, EMEA Data Protection Officer

You create micro-services and don’t know authentication and authorization! SHAME!

When brute force prevention can turn in DoS

Your Incident Response Plan is Hurting Your Security Team

TI (Threat Intelligence) in Microsoft Sentinel high level overview

Reputation Scores: the good, the bad, and the ugly

Cyber Insurance Solutions

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Derk van der Woude

Derk van der Woude

Chief Technology Officer @ Nedscaper

More from Medium

Defending Against a New SSD Attack & Ransomware Stories 📰

Collaboration in Infosec

Splunk IOC Scanner: a use case every-single-SOC needs

FalconFriday —Monitoring for public shares — 0xFF1A