https://lwst.io/en/tags/praxis/ Recent content in Praxis on lwst.io https://lwst.io/images/profile-crop.jpg https://lwst.io/images/profile-crop.jpg Hugo en Sun, 26 Apr 2026 00:00:00 +0000 https://lwst.io/en/posts/microsoft-entra-device-code-phishing/ Sun, 26 Apr 2026 00:00:00 +0000 https://lwst.io/en/posts/microsoft-entra-device-code-phishing/ A phishing wave against Microsoft 365 bypasses MFA and even phishing-resistant passkeys without faking a single pixel of Microsoft. What attackers do, why it works, and the conditional access policy that stops it.