all InfoSec news
EvilProxy Account Takeover Campaign Targets Key Executives
Malware Analysis, News and Indicators - Latest topics malware.news
An escalating threat, named EvilProxy, combines advanced Adversary-in-the-Middle (AitM) phishing with sophisticated Account Takeover (ATO) methods to efficiently nab credentials protected with multi-factor authentication (MFA) and session cookies.
In the last six months, researchers have observed a significant increase in successful cloud account takeovers that specifically target high-profile executives in prominent firms. The attacks employed EvilProxy, which is a reverse proxy-based phishing tool.
This trend is propelled by the growing adoption of MFA within organizations. Notably, research reveals that a …
account account takeover account takeovers advanced adversary adversary-in-the-middle aitm ato authentication campaign cloud cookies credentials evilproxy executives factor high key mfa multi-factor multi-factor authentication nab phishing profile researchers session takeover takeovers target threat