A new phishing kit called Tycoon 2FA raises cybersecurity concerns as it bypasses multi-factor authentication, targeting Microsoft 365 and Gmail accounts. The kit uses session cookie replays for 2FA bypass. Additionally, recent 'MFA Bombing' attacks are targeting Apple users.
Recent ‘MFA Bombing’ Attacks Targeting Apple Users: https://t.co/loe5UNngsi by Krebs on Security #infosec #cybersecurity #technology #news
By me @Forbes: Be extra vigilant folks, the Tycoon 2FA AiTM kit has been updated, dedicated versions targeting Gmail and Microsoft 365 on sale. Uses session cookie replays for 2FA bypass. #infosec #2factorbypass https://t.co/OoYbqGKz1D
Newly detailed ‘Tycoon 2FA’ phishing kit bypasses multi-factor authentication https://t.co/HV7vQC6PkF
New MFA-bypassing phishing kit targets Microsoft 365, Gmail accounts https://t.co/WSIVdz81ZV
New Tycoon 2FA Phishing Kit Raises Cybersecurity Concerns https://t.co/2HrxbX4hHW