Solutions
Solutions
All in one solution
Overview
Managed XDR
Keep my IT safe 24/7
24/7 Incident Response
Restore business operations
Integrations
Cyber Insurance
Ensure business continuity
Security Awareness
Improve security culture
Eye Log
12 months of EU-native log retention
Industry
All sectors
Logistics
Manufacturing
Professional services
Healthcare
Partners
Partner Network
For Brokers & Risk Advisors
Lower your clients' cyber risk.
For Managed Service Providers (MSP)
Expand your offer with cybersecurity.
Case studies
Customer protection
Jan de Rijk
Logistics
Avi Medical
Healthcare
KeyTec Netherlands
Manufacturing
Van der Most Transport
Logistics
SHG Groep
Healthcare
Zimmer Group
Manufacturing
KlaassenGroep
Construction
GOED Belgium
Healthcare
Plans
Resources
Resources
Blog
News from the front lines
Resource Library
Guides and brochures
Knowledge Base
Customer login
Free Anti-spoofing Tool
Sign up to get started
NIS2 Resource Hub
The latest news around NIS2
Eye Research
Tech blog and real-world incidents
Trend Report 2026
Insights from 630 cyber investigations
Glossary of Terms
An overview of cybersecurity terms
Learning Hub
Understand the building blocks
Webinars & Events
All digital & live events at a glance
Company
About
News
Careers
Contact
Press
Talk to us
Take a tour
Solutions
Back
Solutions
All in one solution
Managed XDR
24/7 Incident Response
Integrations
Cyber Insurance
Security Awareness
Eye Log
Industry
All sectors
Logistics
Manufacturing
Professional services
Healthcare
Partners
Back
Partner Network
For Brokers & Risk Advisors
For Managed Service Providers (MSP)
Case studies
Back
Customer protection
Jan de Rijk
Avi Medical
KeyTec Netherlands
Van der Most Transport
SHG Groep
Zimmer Group
KlaassenGroep
GOED Belgium
Plans
Resources
Back
Resources
Blog
Resource Library
Knowledge Base
Free Anti-spoofing Tool
NIS2 Resource Hub
Eye Research
Trend Report 2026
Glossary of Terms
Learning Hub
Webinars & Events
Company
About
News
Careers
Contact
Press
Book a demo
Incident Hotline
 
device code phishing webinar image
EXPERT WEBINAR

Device Code Phishing Is Back: Inside the New BEC Frontier

June 9, 2026 I 11:00 - 11:45 CET

Device code phishing is not new. But in 2026, it is back at scale. We are seeing it across Business Email Compromise (BEC) investigations, packaged into off-the-shelf phishing kits, and engineered specifically to defeat the defences the industry built for Attacker-in-the-Middle.

The reason it works is uncomfortable. There is no fake login page to spot. The login is real. The domain is microsoft.com. The MFA prompt is genuine. The only attacker-controlled surface is the social-engineering page that hands the victim a code to type into Microsoft's own site. Even careful users get caught. And once they do, forensics gets harder. In device code flow, attacker and victim share the same session ID, so the usual playbook of filtering the Unified Audit Log by session breaks down.

Join Eye Security's threat research and forensics experts, together with Microsoft GTM Lead Jeroen Jansen, for a live session on why this technique is resurging, how the latest kits (including encrypted-payload loaders) evade static detection, how to investigate a shared-session compromise using linkable token identifiers, and where to intercept the attack: on the page that delivers the code, before any token is issued.

device code phishing webinar image
EXPERT WEBINAR
Device Code Phishing Is Back: Inside the New BEC Frontier

June 9, 2026 I 11:00 - 11:45 CET

Device code phishing is not new. But in 2026, it is back at scale. We are seeing it across Business Email Compromise (BEC) investigations, packaged into off-the-shelf phishing kits, and engineered specifically to defeat the defences the industry built for Attacker-in-the-Middle.

The reason it works is uncomfortable. There is no fake login page to spot. The login is real. The domain is microsoft.com. The MFA prompt is genuine. The only attacker-controlled surface is the social-engineering page that hands the victim a code to type into Microsoft's own site. Even careful users get caught. And once they do, forensics gets harder. In device code flow, attacker and victim share the same session ID, so the usual playbook of filtering the Unified Audit Log by session breaks down.

Join Eye Security's threat research and forensics experts, together with Microsoft GTM Lead Jeroen Jansen, for a live session on why this technique is resurging, how the latest kits (including encrypted-payload loaders) evade static detection, how to investigate a shared-session compromise using linkable token identifiers, and where to intercept the attack: on the page that delivers the code, before any token is issued.

850+ European organisations place their trust in Eye Security.

A pen test alone to identify all the threats would have cost us as much as our annual cost for Eye’s all round service.
Thorsten Spieker, Director of Engineering.
It feels great to know that someone is looking over your shoulder 24/7. Now I can sleep with two eyes closed.
Marco ter Haar, IT Manager.
It is very pleasant to work with a supplier who speaks our business’ language and also works together with our IT supplier
Gertjan Van der Most, CEO.
The pricing of the service is very transparent and fair.
Fred Westdijk, CEO.
I can really talk to them and they think constructively. They don’t just come in with some commercial product.
Peter Onland, Former IT Manager.

Enterprise-grade, made for the mid-market

This is tailored cybersecurity that meets the scale and complexity of mid-market organisations without the overhead of enterprise-only tools. Simple and to the point. AI-driven detection and expert-led response prevent downtime, protect revenue, and safeguard operations while helping you prepare for the unexpected. 

Protect business continuity

  • Best-of-breed EDR and ITDR
  • 24/7 in-house SOC
  • 24/7 incident response

Build future readiness

  • Annual cyber reviews 
  • Attack surface deep dives
  • Proactive vulnerability and threat hunting

Simplify cybersecurity

  • All-in-one, all-you-need package
  • Onboarding within hours 
  • Built for your scale and risk profile

Accelerate compliance

  • Streamlined audits and regulatory alignment
  • Competitive cyber insurance premiums
  • Frictionless insurance qualification and renewals
Get in touch

Discover why companies choose us.

Protect yourself against digital threats with Europe's leading Open XDR solution. Try a demo to see how Eye Security compares to your existing solution.

  • Protect your business 24/7
  • Prevent ransomware & data breaches
  • Respond to attacks within minutes
  • Mitigate financial losses with cyber insurance, advised by brokers

 

Trusted by European companies:

Talk to an expert.