all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

New EvilProxy Phishing Service Allowing Cybercriminals to Bypass 2-Factor Security

Add to bookmarks
Sept. 6, 2022, 6:47 a.m. | noreply@blogger.com (Ravie Lakshmanan)

The Hacker News thehackernews.com

A new phishing-as-a-service (PhaaS) toolkit dubbed EvilProxy is being advertised on the criminal underground as a means for threat actors to bypass two-factor authentication (2FA) protections employed against online services.
"EvilProxy actors are using reverse proxy and cookie injection methods to bypass 2FA authentication – proxifying victim's session," Resecurity researchers said in a Monday

bypass cybercriminals evilproxy factor phishing security service

Visit resource

More from thehackernews.com / The Hacker News

Severe Flaws Disclosed in Brocade SANnav SAN Management Software 9 hours ago | thehackernews.com
application area brocade compromise +17
10 Critical Endpoint Security Tips You Should Know 13 hours ago | thehackernews.com
breaches business connectivity critical +20
New 'Brokewell' Android Malware Spread Through Fake Browser Updates 13 hours ago | thehackernews.com
analysis android android malware banking +15
Palo Alto Networks Outlines Remediation for Critical PAN-OS Flaw Under Attack 13 hours ago | thehackernews.com
alto attack command critical +23
Hackers Exploiting WP-Automatic Plugin Bug to Create Admin Accounts on WordPress Sites 18 hours ago | thehackernews.com
accounts admin automatic bug +18
North Korea's Lazarus Group Deploys New Kaolin RAT via Fake Job Lures 1 day, 7 hours ago | thehackernews.com
access actor binary called +19
Network Threats: A Step-by-Step Attack Demonstration 1 day, 12 hours ago | thehackernews.com
access advanced attack attackers +21
DOJ Arrests Founders of Crypto Mixer Samourai for $2 Billion in Illegal Transactions 1 day, 13 hours ago | thehackernews.com
arrest arrests called criminal +17
Google Postpones Third-Party Cookie Deprecation Amid U.K. Regulatory Scrutiny 1 day, 17 hours ago | thehackernews.com
address authority browser chrome +24

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Consultant

@ Auckland Council | Central Auckland, NZ, 1010
View on infosec-jobs.com

Security Engineer, Threat Detection

@ Stripe | Remote, US
View on infosec-jobs.com

DevSecOps Engineer (Remote in Europe)

@ CloudTalk | Prague, Prague, Czechia - Remote
View on infosec-jobs.com

Security Architect

@ Valeo Foods | Dublin, Ireland
View on infosec-jobs.com

Security Specialist - IoT & OT

@ Wallbox | Barcelona, Catalonia, Spain
View on infosec-jobs.com
View more jobs