OAuth Client ID Spoofing Lets Attackers Validate Stolen Microsoft Entra Credentials
OAuth client ID spoofing lets attackers test Entra accounts and stolen passwords without successful sign-ins, leaving application names blank in logs.
More info
