An Interest In:
Web News this Week
- April 12, 2024
- April 11, 2024
- April 10, 2024
- April 9, 2024
- April 8, 2024
- April 7, 2024
- April 6, 2024
Some of Our Sources
- Techcrunch
- Web Designer Wall
- Just Creative
- Smashing Apps
- Inspiredology
- Naldz Graphics
- Noupe
- Specky Boy
- Web Resource Source
- Android Headlines
Help Webnuz
Referal links:
December 27, 2021 07:22 pm
Original Link: https://it.slashdot.org/story/21/12/27/1922249/more-than-1200-phishing-toolkits-capable-of-intercepting-2fa-detected-in-the-wild?utm_source=rss1.0main
More Than 1,200 Phishing Toolkits Capable of Intercepting 2FA Detected in the Wild
A team of academics said it found more than 1,200 phishing toolkits deployed in the wild that are capable of intercepting and allowing cybercriminals to bypass two-factor authentication (2FA) security codes. From a report: Also known as MitM (Man-in-the-Middle) phishing toolkits, these tools have become extremely popular in the cybercrime underworld in recent years after major tech companies started making 2FA a default security feature for their users. The direct result was that threat actors who managed to trick a user into entering credentials on a phishing site found that the stolen credentials became useless since they couldn't bypass the 2FA procedure. To counter this new trend in account security protections, since at least 2017, threat actors started adopting new tools that would allow them to bypass 2FA by stealing a user's authentication cookies, which are files created inside a web browser once the user has logged into an account after the 2FA process was completed. In most instances, cybercrime groups have relied on a malware category known as an "infostealer" to steal these authentication cookie files from computers they managed to infect. However, there is another way to steal these files that does not rely on infecting a computer with malware -- namely, by stealing the authentication cookies while they transit the internet from the service provider to a user's computer.Read more of this story at Slashdot.
Original Link: https://it.slashdot.org/story/21/12/27/1922249/more-than-1200-phishing-toolkits-capable-of-intercepting-2fa-detected-in-the-wild?utm_source=rss1.0main
Share this article:
Tweet
View Full Article
Slashdot
Slashdot was originally created in September of 1997 by Rob "CmdrTaco" Malda. Today it is owned by Geeknet, Inc..More About this Source Visit Slashdot