SOP-21: OAuth Illicit Consent Grant Attack Response
SOC analyst SOP for detecting and revoking malicious OAuth application consents — users tricked into granting third-party apps Mail, Files, and Contacts access that bypasses MFA.
Rudra Verma, Senior Security Architect & Researcher