DEV-1101 enables high-volume AiTM campaigns with open-source phishing kit

Adversary-in-the-middle (AiTM) phishing kits are part of an increasing trend that is observed supplanting many other less advanced forms of phishing. AiTM phishing is capable of circumventing multifactor authentication (MFA) through reverse-proxy functionality. DEV-1101 is an actor tracked by Microsoft responsible for the development, support, and advertising of several AiTM phishing kits, which other cybercriminals can buy or rent. The availability of such phishing kits for purchase by attackers is part of the industrialization of the cybercriminal economy and lowers …

actor advanced adversary adversary-in-the-middle advertising aitm aitm phishing attackers authentication availability campaigns cybercriminals dev dev-1101 development forms high kit mfa microsoft multifactor multifactor authentication phishing phishing kit phishing kits proxy responsible reverse support trend