Threat Post

Low-Detection Phishing Kits Increasingly Bypass MFA

A growing class of phishing kits – transparent reverse proxy kits – are being used to get past multi-factor authentication using MiTM tactics. More and more phishing kits are focusing on bypassing ...
Yahoo Finance

MILBERT.AI Hunts and Kills MFA Bypass Attacks in Real Time

LAS VEGAS, Aug. 8, 2025 /PRNewswire/ -- Multi-factor authentication has failed. In 2024, 87% of successful cyberattacks involved session hijacking after valid MFA logins. State-sponsored groups like ...
Bleeping Computer

Hackers use AiTM attack to monitor Microsoft 365 accounts for BEC scams

A new business email compromise (BEC) campaign has been discovered combining sophisticated spear-phishing with Adversary-in-The-Middle (AiTM) tactics to hack corporate executives' Microsoft 365 ...
Bleeping Computer

MFA adoption pushes phishing actors to reverse-proxy solutions

The rising adoption of multi-factor authentication (MFA) for online accounts pushes phishing actors to use more sophisticated solutions to continue their malicious operations, most notably ...
Infosecurity-magazine.com

MFA Bypass Kits Account For One Million Monthly Messages

Threat actors continued to evolve their tactics to sidestep user defenses in 2022, with multi-factor authentication (MFA) bypass kits accounting for millions of phishing messages, according to ...
ITWeb

How hackers bypass 2FA: Insights from Iconis SOC team

Recent attacks observed by the Iconis SOC team have revealed that hackers are employing increasingly sophisticated methods to bypass multi-factor authentication (MFA). As a security engineer, this ...
CSOonline

Redefining multifactor authentication: Why we need passkeys

As attackers become more adept at defeating authentication apps and IP fencing, passkeys are a more secure and user-friendly alternative. Persistent threats such as business email compromise (BEC) ...