ConsentFix Attack Lets Hackers Hijack Microsoft Accounts via Azure CLI Abuse
Security researchers at Push have identified a sophisticated new phishing attack termed “ConsentFix,” which combines OAuth consent manipulation with ClickFix-style social engineering to compromise Microsoft accounts without requiring passwo…