Attackers exploit misconfigured email routing and weak spoof protections to send internal-looking phishing emails for ...
Threat actors abuse complex routing and misconfigured protections to spoof domains and send phishing emails that appear to be ...
Threat actors are abusing misconfigured MX records and weak DMARC/SPF policies to make phishing emails look internal, ...
Threat actors are exploiting complex routing scenarios and misconfigured spoof protections to send spoofed phishing emails, ...
One of the challenges for phishing attacks is that innovation is rife, especially when it comes to convincing targets that they are responding to a legitimate email. New reports from Microsoft and ...
A surge in Adversary‑in‑the‑Middle phishing attacks exploiting Phishing‑as‑a‑Service frameworks has been recorded in 2025, allowing cybercriminals to systematically bypass multi‑factor authentication ...
A new phishing-as-a-service (PhaaS) platform named 'Rockstar 2FA' has emerged, facilitating large-scale adversary-in-the-middle (AiTM) attacks to steal Microsoft 365 credentials. Like other AiTM ...
Cybersecurity researchers at Trustwave have identified a surge in malicious e-mail campaigns leveraging Rockstar 2FA, a phishing-as-a-service (PhaaS) toolkit designed to steal Microsoft 365 ...
A new phishing kit dubbed Tycoon 2FA has raised significant concerns in the cybersecurity community. Discovered by the Sekoia Threat Detection & Research (TDR) team in October 2023 and discussed in an ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback