TechRadar Microsoft warns of OAuth phishing campaigns able to bypass email and browser defenses - says 'these campaigns demonstrate that this abuse is operational, not theoretical'
An OAuth feature is being abused in the wild to drop malware to people's computers.