TechRepublic

Microsoft 365 Android Apps Had a Token Flaw IT Teams Should Check Now

A debug flag left active in six Microsoft 365 Android apps allowed another installed app on the same device to request account tokens without user interaction. A debug flag left active in production ...
Redmond Magazine

Microsoft 365 Android Coding Error Put Account Tokens at Risk

Microsoft 365 Android apps exposed account tokens through a production coding error. FlagLeft vulnerabilities let malicious Android apps impersonate signed-in ...
Bleeping Computer

Microsoft Visual Studio Code flaw lets extensions steal passwords

Microsoft's Visual Studio Code (VS Code) code editor and development environment contains a flaw that allows malicious extensions to retrieve authentication tokens stored in Windows, Linux, and macOS ...