In a thrilling new twist on the classic game of ‘Who’s That Hacker?’, cybersecurity researchers have uncovered a dramatic performance by threat actors using fake OAuth apps. The plot is simple: impersonate enterprises with fake Microsoft 365 applications and watch as confusion and chaos ensue!

Among the star impersonations are companies such as RingCentral, SharePoint, Adobe, and Docusign. These hackers clearly have a sense of flair, aiming for the big leagues in their quest to harvest credentials and perform dazzling account takeovers. It’s like Ocean’s Eleven, but for office software!

A Proofpoint spokesperson, when asked to comment, probably said something along the lines of, ‘Yes, we’re impressed by their creativity, but we’d prefer if they stuck to karaoke impersonations instead.’ Meanwhile, Microsoft recommends users adopt their latest defense strategy: close your eyes and hope for the best.