EvilTokens

PhaaS-palveluissa tekoälyä käytetään luomaan kielellisesti virheettömiä ja tarkasti kohdennettuja huijausviestejä automatisoimalla uhrin taustatietojen etsintä sosiaalisesta mediasta.

EvilTokens hyödyntää tekoälyä sähköpostisuodattimien ohittamisessa, kalasteluhyökkäysten räätälöinnissä sekä tuottoisimpien maalien tunnistamisessa.

Seeing a valid sign-in, Microsoft issues access and refresh tokens to the session opened by the attacker. Once inside, the criminals can access corporate email, files, Teams, SharePoint, OneDrive, and other Microsoft 365 resources and exfiltrate data or prepare BEC attacks.

EvilTokens is a phishing-as-a-service (PhaaS) kit built to compromise Microsoft 365 accounts by abusing the OAuth 2.0 device authorization grant flow. As attacks that use the kit rely on device code phishing, they sidestep the need for convincing replicas of genuine login pages where the victims would hand over their passwords. | The victim receives an email or message that’s often dressed up as an invoice, shared document, calendar invite, or SharePoint access request. The lure involves a decoy page impersonating a trusted brand or service, along with simple wording such as “Verify to view” or “Signature required.”

This email contains an iCalendar (.ics) file that automatically adds a "tentative" meeting to the victim's Outlook calendar without the user needing to open the original email.

Kalasteluviestejä luodaan kohdennetusti eri organisaatioille ja käyttäjärooleille, mikä lisää onnistumisen todennäköisyyttä.

Device-code phishing pages impersonating Adobe, DocuSign, and SharePoint harvest Microsoft OAuth tokens.

Seeing a valid sign-in, Microsoft issues access and refresh tokens to the session opened by the attacker. Once inside, the criminals can access corporate email, files, Teams, SharePoint, OneDrive, and other Microsoft 365 resources and exfiltrate data or prepare BEC attacks.

Notably, the “management” tab enables attackers to add users to the administration panel and assign them roles, thereby facilitating collaboration within the same EvilTokens instance.

Seeing a valid sign-in, Microsoft issues access and refresh tokens to the session opened by the attacker. Once inside, the criminals can access corporate email, files, Teams, SharePoint, OneDrive, and other Microsoft 365 resources and exfiltrate data or prepare BEC attacks.

Lisäksi tekoäly muuntelee viestien tekstiä ja koodia reaaliajassa, mikä auttaa niitä kiertämään perinteiset roskapostisuodattimet ja tietoturvajärjestelmät.

Prompts direct the model to reference real email threads, mask payment changes behind “plausible business reasons”, imitate sender style, and generate emails “realistic enough to fool a trained employee.”

Seeing a valid sign-in, Microsoft issues access and refresh tokens to the session opened by the attacker. Once inside, the criminals can access corporate email, files, Teams, SharePoint, OneDrive, and other Microsoft 365 resources and exfiltrate data or prepare BEC attacks.

It also implements two anti-bot checks: A User-Agent validation against a list of known bot patterns. A time-based token computed as the SHA256 hash of the token secret + current Unix timestamp + “antibot”.

For the top three financial exposures, the prompt instructs the model to construct detailed attack scenarios... “PERSISTENCE: [inbox rules to create for interception and evidence cleanup]”

...harvest Microsoft credentials and tokens in real-time, effectively allowing the threat actors to bypass multi-factor authentication (MFA).

Seeing a valid sign-in, Microsoft issues access and refresh tokens to the session opened by the attacker.

A key concern is the use of ConsentFix, or device code phishing, which allows attackers to steal session tokens, bypassing multi-factor authentication.

Since mid-February 2026, these phishing pages have been distributed in the wild and were rapidly adopted by cybercriminals specialising in Adversary-in-the-Middle (AiTM) phishing and Business Email Compromise (BEC).

Further probing revealed that this campaign uses a technique called ConsentFix, aka device code phishing... Hackers can infiltrate an account even if the user has multi-factor authentication (MFA) enabled, simply by stealing these tokens.

Once a victim's token was captured, the platform could scan their inbox, calendar invites, and documents, and use that context to generate convincing follow-on attacks.

The backend server then executes parallel Microsoft Graph API requests to perform reconnaissance: /contacts... /manager... /directReports... /organization

It also implements two anti-bot checks: A User-Agent validation against a list of known bot patterns. A time-based token computed as the SHA256 hash of the token secret + current Unix timestamp + “antibot”.

conduct reconnaissance via Microsoft Graph API... The backend server then executes parallel Microsoft Graph API requests to perform reconnaissance

Things like wire fraud emails written in the victim's own voice, automatically drafted and sent within minutes of token capture.

Once inside, the criminals can access corporate email, files, Teams, SharePoint, OneDrive, and other Microsoft 365 resources

Employees who receive an unexpected device-code request should notify their company’s IT or security teams, who may need to review sign-in logs, revoke sessions, invalidate refresh tokens, remove malicious inbox rules, and temporarily disable the compromised account.

Finally, EvilTokens pipeline forwards all results... It also converts tokens into cookies for access to live browser sessions on Microsoft domains, bypassing passwords and MFA.

its features enable attackers to weaponise harvested tokens to exfiltrate emails, files and other sensitive data from compromised Microsoft accounts... It allegedly supports unlimited accounts and Microsoft Admin, Azure, Office, OneDrive, SharePoint and Teams applications

Since mid-February 2026, these phishing pages have been distributed in the wild and were rapidly adopted by cybercriminals specialising in Adversary-in-the-Middle (AiTM) phishing and Business Email Compromise (BEC).

Once inside, the criminals can access corporate email, files, Teams, SharePoint, OneDrive, and other Microsoft 365 resources and exfiltrate data or prepare BEC attacks.

The prompt then asks for three realistic BEC emails “to be realistic enough to fool a trained employee”... imitate writing style: mirror the sender’s greeting, sentence length, tone, and signature.