MFA Bypass Archives • Page 2 of 3 • Daily CyberSecurity

The New Voice of Fraud: Cybercrime ‘Supergroup’ Recruits Female Callers to Breach Corporate IT Help Desks CRussian Market, "Fly" (Flyded) hange Healthcare Cyberattack - CVE-2024-50603 Exploit

CRussian Market, "Fly" (Flyded) hange Healthcare Cyberattack - CVE-2024-50603 Exploit

The New Voice of Fraud: Cybercrime ‘Supergroup’ Recruits Female Callers to Breach Corporate IT Help Desks

Do Son March 2, 2026

Cybersecurity threats are no longer just about malicious code and zero-day vulnerabilities; they are increasingly about human...

“IT Support” Imposters: ShinyHunters Vishing Rings Bypass MFA to Steal Data ShinyHunters Vishing Corporate Vishing Attacks

“IT Support” Imposters: ShinyHunters Vishing Rings Bypass MFA to Steal Data

Do Son February 4, 2026

A new report from Mandiant details how sophisticated voice phishing (vishing) rings are bypassing modern security controls...

The “Fix” is a Trap: ConsentFix Phishing Bypasses MFA via Azure CLI ConsentFix Phishing OAuth Token Theft

The “Fix” is a Trap: ConsentFix Phishing Bypasses MFA via Azure CLI

Do Son February 2, 2026

A cunning new phishing technique is turning the trust of Microsoft’s own tools against its users. Dubbed...

How New Phishing Kits Are Turning Vishing into Real-Time Orchestration

Do Son January 25, 2026

A new generation of cyber threats has emerged, transforming the clunky art of voice phishing (vishing) into...

Hackers Abuse “Device Codes” to Bypass Security and Seize Microsoft 365 Accounts Device Code Phishing, Microsoft 365 OAuth

Hackers Abuse “Device Codes” to Bypass Security and Seize Microsoft 365 Accounts

Do Son December 22, 2025

Cybercriminals have found a new way to turn corporate security protocols against themselves, weaponizing a legitimate Microsoft...

BlackForce PhaaS Weaponizes React and Stateful Sessions to Bypass MFA & Steal Credentials phishing-3390518_1280

BlackForce PhaaS Weaponizes React and Stateful Sessions to Bypass MFA & Steal Credentials

Do Son December 16, 2025

A sophisticated new player has entered the Phishing-as-a-Service (PhaaS) market, offering cybercriminals a powerful toolset designed to...

Payroll Piracy: Hackers Storm-2657 Exploit MFA Flaws to Hijack University Salary Payments via Workday Payroll Piracy, Workday Phishing

Payroll Piracy: Hackers Storm-2657 Exploit MFA Flaws to Hijack University Salary Payments via Workday

Do Son October 13, 2025

Microsoft Threat Intelligence has issued a warning about a financially motivated campaign conducted by a threat actor...

Trinity of Chaos: How LAPSUS$, Scattered Spider, and ShinyHunters Forged a Cybercrime Alliance WhatsApp Worm, Brazilian Banking Trojan LAPSUS$ Alliance, Scattered Spider Ransomware, Cybercrime RedCurl APT group Russian Cyberespionage, ApolloShadow Malware

WhatsApp Worm, Brazilian Banking Trojan LAPSUS$ Alliance, Scattered Spider Ransomware, Cybercrime RedCurl APT group Russian Cyberespionage, ApolloShadow Malware

Trinity of Chaos: How LAPSUS$, Scattered Spider, and ShinyHunters Forged a Cybercrime Alliance

Do Son September 29, 2025

A new report from Resecurity sheds light on the growing convergence between three of the most notorious...

Akira Ransomware Exploits SonicWall VPN Accounts With Lightning-Fast Intrusions Akira ransomware affiliates Akira Ransomware, SonicWall VPN

Akira ransomware affiliates Akira Ransomware, SonicWall VPN

Akira Ransomware Exploits SonicWall VPN Accounts With Lightning-Fast Intrusions

Do Son September 29, 2025

Arctic Wolf has observed a major uptick in Akira ransomware activity since late July 2025, with attackers...

A Deceptive Ad Campaign Is Stealing Credentials from the Hospitality Industry the phishing page prompts for OTP codes sent via SMS

A Deceptive Ad Campaign Is Stealing Credentials from the Hospitality Industry

Do Son September 2, 2025

Okta Threat Intelligence is sounding the alarm over a large-scale phishing campaign that has been actively impersonating...

PoisonSeed’s MFA-Resistant Phishing Kit Exposed: A Deep Dive into Precision-Validated Credential Theft

Do Son August 13, 2025

A new NVISO investigation has revealed the inner workings of PoisonSeed, a sophisticated threat actor whose tactics...

The Billion-Dollar Smishing Empire: How Chinese Syndicates Are Hacking Apple & Google Wallets Smishing, Digital Wallet Fraud

The Billion-Dollar Smishing Empire: How Chinese Syndicates Are Hacking Apple & Google Wallets

Do Son August 8, 2025

A sweeping investigation by Security Alliance has uncovered a vast, evolving cybercriminal infrastructure driven by Chinese-speaking smishing...

APT36 Targets Indian Government with Sophisticated Phishing, Bypassing MFA with Real-Time OTP Harvest APT36, Indian Government Phishing

APT36 Targets Indian Government with Sophisticated Phishing, Bypassing MFA with Real-Time OTP Harvest

Do Son August 5, 2025

A new report by CYFIRMA has uncovered a meticulously crafted phishing campaign attributed to APT36 (Transparent Tribe),...

Urgent Zero-Day Warning: SonicWall VPNs Under Attack, Akira Ransomware Deployed Within Hours hackerbot-claw campaign Cisco RCE Exploit CVE-2026-20045 SonicWall VPN, Akira Ransomware Nobelium Apache Tomcat, Apache Camel

hackerbot-claw campaign Cisco RCE Exploit CVE-2026-20045 SonicWall VPN, Akira Ransomware Nobelium Apache Tomcat, Apache Camel

Urgent Zero-Day Warning: SonicWall VPNs Under Attack, Akira Ransomware Deployed Within Hours

Do Son August 4, 2025

Huntress has issued a critical alert about what appears to be a zero-day vulnerability in SonicWall Secure...

The OAuth Phishing Trap: Proofpoint Exposes AiTM Attacks That Bypass MFA to Hijack Cloud Accounts Fake Microsoft landing page, capturing MFA

The OAuth Phishing Trap: Proofpoint Exposes AiTM Attacks That Bypass MFA to Hijack Cloud Accounts

Do Son August 2, 2025

Proofpoint has revealed a persistent wave of adversary-in-the-middle (AiTM) phishing campaigns that exploit Microsoft OAuth applications to...

CitrixBleed 2: CVE-2025-5777 Joins CISA’s KEV Catalog Amid Active Exploitation Storm, PoC Available CitrixBleed 2, Session Hijacking

CitrixBleed 2: CVE-2025-5777 Joins CISA’s KEV Catalog Amid Active Exploitation Storm, PoC Available

Do Son July 11, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has officially added CVE-2025-5777 to its Known Exploited Vulnerabilities...

Citrix Bleed 2: ReliaQuest Warns of Active Exploitation in NetScaler Gateway Vulnerability Citrix Bleed 2, Session Hijacking

Citrix Bleed 2: ReliaQuest Warns of Active Exploitation in NetScaler Gateway Vulnerability

Do Son June 30, 2025

A newly discovered vulnerability—CVE-2025-5777, now dubbed Citrix Bleed 2—is raising serious security alarms. According to ReliaQuest, attackers...

Iranian APT “Educated Manticore” Unleashes AI-Powered Phishing & Keylogging Against Critics

Do Son June 27, 2025

Check Point Research has uncovered a new wave of targeted cyber-espionage activity linked to Educated Manticore, an...

BitoPro Crypto Heist: North Korea’s Lazarus Group Steals $11.5M via Phished Employee BitoPro Hack, Lazarus Group

BitoPro Crypto Heist: North Korea’s Lazarus Group Steals $11.5M via Phished Employee

Do Son June 24, 2025

In May 2025, the Taiwanese cryptocurrency exchange BitoPro fell victim to a cyberattack, resulting in the loss...

MFA Bypass Alert: AitM Phishing Surges with Industrialized PhaaS Kits Targeting Microsoft 365 & Google Accounts!

Do Son June 12, 2025

A new global threat assessment from Sekoia.io’s Threat Detection & Research (TDR) team reveals an escalation in...

Critical Alert 1 Active Exploit Detected Today