all InfoSec news
BG - Authentication Proxy Attacks: Detection, Response and Hunting
Oct. 25, 2023, 9:51 p.m. | BSidesLV
BSidesLV www.youtube.com
Over five years ago, evilnginx was released, demonstrating the ease of stealing authentication session tokens from MFA-enabled logon processes with a simple reverse proxy. Despite being a well-known technique, few of these attacks were seen in widespread use among cybercrime threat actors, until recently.
The advent of the EvilProxy and similar platforms has given attackers the ability to compromise targets with strong authentication without resorting to burdensome SIM swapping or noisy push fatigue attacks. With nascent …
attacks authentication breaking cybercrime detection hunting logon mfa processes proxy response reverse reverse proxy session simple stealing threat threat actors tokens tuesday well-known
More from www.youtube.com / BSidesLV
GF - Open Source GitOps for Detection Engineering
7 months, 1 week ago |
www.youtube.com
GT - Playing Games with Cybercriminals
7 months, 1 week ago |
www.youtube.com
BG - And Together We Crossed the River…
7 months, 1 week ago |
www.youtube.com
CG - Conti Leaks and CARVER Analysis for Threat Intel Analysts
7 months, 1 week ago |
www.youtube.com
PW - Could Passwordless be Worse than Passwords?
7 months, 1 week ago |
www.youtube.com
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Security Compliance Strategist
@ Grab | Petaling Jaya, Malaysia
Cloud Security Architect, Lead
@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)