adversary-in-the-middle Archives • Daily CyberSecurity

Inside UNC6671’s “BlackFile” Cloud Extortion Campaigns UNC6671 BlackFile Cloud Attacks AiTM MFA Bypass Okta Microsoft

Inside UNC6671’s “BlackFile” Cloud Extortion Campaigns

Ddos May 20, 2026

A sophisticated identity-centric threat actor operating under the brand “BlackFile” has spent the early months of 2026...

TikTok for Business Under Siege: New Phishing Campaign Exploits “Login with Google” TikTok for Business Phishing AiTM Phishing Kit

TikTok for Business Under Siege: New Phishing Campaign Exploits “Login with Google”

Ddos April 3, 2026

Researchers at Push Security have identified and blocked a novel campaign targeting TikTok for Business accounts—the very...

AWS Console Alert: Real-Time “AiTM” Phishing Campaign Bypasses MFA with Rapid Precision AWS Phishing AiTM Attack

AWS Console Alert: Real-Time “AiTM” Phishing Campaign Bypasses MFA with Rapid Precision

Ddos March 9, 2026

In a sophisticated escalation of cloud-targeting attacks, Datadog Security Research has uncovered an active adversary-in-the-middle (AiTM) phishing...

PoisonSeed’s MFA-Resistant Phishing Kit Exposed: A Deep Dive into Precision-Validated Credential Theft

Ddos August 13, 2025

A new NVISO investigation has revealed the inner workings of PoisonSeed, a sophisticated threat actor whose tactics...

Russian State Hackers Spy on Moscow Embassies via ISP-Level AiTM Attacks WhatsApp Worm, Brazilian Banking Trojan LAPSUS$ Alliance, Scattered Spider Ransomware, Cybercrime RedCurl APT group Russian Cyberespionage, ApolloShadow Malware

WhatsApp Worm, Brazilian Banking Trojan LAPSUS$ Alliance, Scattered Spider Ransomware, Cybercrime RedCurl APT group Russian Cyberespionage, ApolloShadow Malware

Russian State Hackers Spy on Moscow Embassies via ISP-Level AiTM Attacks

Ddos August 1, 2025

A covert cyberespionage operation by Russian state actor Secret Blizzard has been targeting foreign embassies in Moscow,...

Microsoft Takes Down “ONNX” Phishing-as-a-Service Operation

Ddos November 22, 2024

Microsoft’s Digital Crimes Unit (DCU) has struck a significant blow against the cybercrime supply chain, seizing 240...

Microsoft Warns of Sophisticated Identity Phishing Campaigns Misusing File Hosting Services

Ddos October 8, 2024

Microsoft Threat Intelligence has identified a rising trend of phishing campaigns exploiting legitimate file hosting services like...

ESET’s Discovery: Blackwood’s AitM Attacks and the NSPX30 Implant NSPX30 implant Blackwood

ESET’s Discovery: Blackwood’s AitM Attacks and the NSPX30 Implant

Ddos January 25, 2024

In the intricate and often shadowy world of cyber espionage, a new name has risen to prominence,...