all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Threat Actors Turn to AiTM to Bypass MFA

Add to bookmarks
Feb. 14, 2023, 1 p.m. | Nathan Eddy

Security Boulevard securityboulevard.com


Threat actors have started moving away from authenticating via legacy protocols to bypass multifactor authentication (MFA) in Microsoft 365, according to an Expel report on cybersecurity trends. Instead, malicious actors are adopting frameworks such as Evilginx2 to facilitate adversary-in-the-middle (AiTM) phishing attacks to steal login credentials and session cookies for initial access and MFA bypass...


The post Threat Actors Turn to AiTM to Bypass MFA appeared first on Security Boulevard.

2fa phishing access adversary adversary-in-the-middle aitm attacks authentication bec business email compromise bypass cookies credentials cybersecurity cybersecurity trends expel frameworks initial access legacy login login credentials malicious malicious actors mfa microsoft microsoft 365 moving multifactor multifactor authentication phishing phishing attacks protocols report security security boulevard session steal threat threat actors trends turn

Visit resource

More from securityboulevard.com / Security Boulevard

Agile by Design: Cybersecurity at the Heart of Transformation 3 hours ago | securityboulevard.com
agile blog business can +25
Cybersecurity Insights with Contrast CISO David Lindner | 4/26/24 4 hours ago | securityboulevard.com
ai analytics & intelligence artificial intelligence audio +26
The ultimate cyber spring-cleaning checklist 6 hours ago | securityboulevard.com
can checklist cleaning cyber +14
What is Network Pen Testing? 13 hours ago | securityboulevard.com
assessment attack cyber cyber security +27
RSAC 2024 Innovation Sandbox | The Future Frontline: Harmonic Security’s Data Protection in the AI … 15 hours ago | securityboulevard.com
benchmark blog conference cybersecurity +22
How to Migrate from FedRAMP Rev 4 to FedRAMP Rev 5 16 hours ago | securityboulevard.com
can development evolution fedramp +9
NodeZero: Testing for Exploitability of Palo Alto Networks CVE-2024-3400 19 hours ago | securityboulevard.com
advisory alto april cve +18
Understanding the Change Healthcare Breach and Its Impact on Security Compliance 19 hours ago | securityboulevard.com
american american hospital association attack blog posts +20
Why Zero Trust is a Must for Strong Corporate Governance 21 hours ago | securityboulevard.com
blog corporate cybersecurity cybersecurity institute +7

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Compliance Architect - Experian Health (Can be REMOTE from anywhere in the US)

@ Experian | ., ., United States
View on infosec-jobs.com

IT Security Specialist

@ Ørsted | Kuala Lumpur, MY
View on infosec-jobs.com

Senior, Cyber Security Analyst

@ Peloton | New York City
View on infosec-jobs.com

Cyber Security Engineer | Perimeter | Firewall

@ Garmin Cluj | Cluj-Napoca, Cluj County, Romania
View on infosec-jobs.com

Pentester / Ethical Hacker Web/API - Vast/Freelance

@ Resillion | Brussels, Belgium
View on infosec-jobs.com
View more jobs