Topic: multi-factor authentication bypass

Sort by: Relevance | Date
  • Microsoft 365 Users Hit by Sneaky Device Code Phishing
    December 20, 2025
    88%

    Microsoft 365 Users Hit by Sneaky Device Code Phishing

    Attackers are exploiting Microsoft's device code authorization flow to bypass multi-factor authentication, tricking users into granting account access via fraudulent login portals. The campaigns are scaled using readily available red team tools like Squarephish and Graphish, which automate phishi...

    Read More »
  • ConsentFix Attack Hijacks Microsoft Accounts via Azure CLI
    December 12, 2025
    87%

    ConsentFix Attack Hijacks Microsoft Accounts via Azure CLI

    A new phishing campaign called **ConsentFix** compromises Microsoft accounts by exploiting the legitimate Azure CLI OAuth application, bypassing passwords and multi-factor authentication. The attack deceives users into authenticating themselves via a fake CAPTCHA and a Microsoft login page, then ...

    Read More »
  • Cyber Attackers Target Retail Gift Cards with Cloud-Only Tactics
    October 23, 2025
    82%

    Cyber Attackers Target Retail Gift Cards with Cloud-Only Tactics

    The "Jingle Thief" cyber campaign targets retailers by exploiting cloud environments using stolen credentials from phishing, bypassing traditional malware and endpoint security. Attackers gain access to gift-card systems by manipulating inboxes, enrolling rogue devices, and bypassing multi-factor...

    Read More »
  • SonicWall warns admins: Disable SSLVPN now to stop attacks
    August 6, 2025
    80%

    SonicWall warns admins: Disable SSLVPN now to stop attacks

    SonicWall has issued an urgent alert to disable SSLVPN services due to potential zero-day exploits targeting Gen 7 firewalls, with ransomware attacks bypassing multi-factor authentication. Security researchers suspect an unpatched flaw in SonicWall’s SSL VPN technology, advising immediate mitigat...

    Read More »
  • Patch Alert: CitrixBleed 2 Still a Threat (CVE-2025-5777)
    July 10, 2025
    80%

    Patch Alert: CitrixBleed 2 Still a Threat (CVE-2025-5777)

    A critical vulnerability (CVE-2025-5777) in Citrix NetScaler systems is being exploited, enabling session hijacking and unauthorized access despite Citrix's denial of confirmed attacks. The flaw allows attackers to extract session tokens via manipulated login requests, potentially compromising ad...

    Read More »
  • Scattered Spider Attacks: 3 Crucial Lessons for Insurance Firms
    June 27, 2025
    80%

    Scattered Spider Attacks: 3 Crucial Lessons for Insurance Firms

    Insurance companies are increasingly targeted by cybercriminals like Scattered Spider, exploiting weak identity security and help desk procedures to breach major insurers such as Aflac and Erie Insurance. Scattered Spider uses impersonation and social engineering to bypass multi-factor authentica...

    Read More »
  • Push Security Stops Malicious Copy-Paste Attacks
    December 20, 2025
    75%

    Push Security Stops Malicious Copy-Paste Attacks

    Push Security has launched a malicious copy-and-paste detection feature to disrupt ClickFix-style attacks by blocking the execution of harmful scripts copied from deceptive webpages. ClickFix attacks, which trick users into copying and running malicious code, have surged over 500% in six months a...

    Read More »
  • 1,200+ Citrix servers vulnerable to critical auth bypass flaw
    July 1, 2025
    75%

    1,200+ Citrix servers vulnerable to critical auth bypass flaw

    Over 1,200 Citrix NetScaler systems remain vulnerable to CVE-2025-5777, a severe authentication bypass flaw enabling session hijacking and MFA bypass, with potential active exploitation despite Citrix's denial. The flaw, dubbed "Citrix Bleed 2," allows attackers to steal session tokens and creden...

    Read More »
  • 3,000+ Unpatched NetScaler Devices Vulnerable to CitrixBleed 2
    August 13, 2025
    70%

    3,000+ Unpatched NetScaler Devices Vulnerable to CitrixBleed 2

    Over 3,300 Citrix NetScaler systems remain unpatched against CVE-2025-5777 (CitrixBleed 2), exposing organizations to session hijacking and data theft despite available fixes. The flaw allows attackers to bypass authentication, intercept session tokens, and compromise credentials, with active exp...

    Read More »
  • Microsoft SaaS Vulnerability Exposed Apps for 2 Years
    June 26, 2025
    70%

    Microsoft SaaS Vulnerability Exposed Apps for 2 Years

    A critical security flaw in Microsoft’s Entra ID, called nOAuth, has exposed thousands of enterprise applications for two years, allowing unauthorized access to sensitive data by exploiting unverified email claims. The vulnerability bypasses security measures like MFA and Zero Trust, affecting ov...

    Read More »
  • 'BRICKSTORM' Backdoor: Chinese Hackers Target US Firms
    September 27, 2025
    68%

    'BRICKSTORM' Backdoor: Chinese Hackers Target US Firms

    A sophisticated cyber espionage campaign using the BRICKSTORM backdoor is targeting U.S. companies, particularly in legal, tech, and SaaS sectors, and is attributed to Chinese-aligned hackers with goals beyond intelligence gathering. The threat actors, known as UNC5221, employ a complex, multi-st...

    Read More »
  • UK Fines LastPass £1.2 Million Over 2022 Data Breach
    December 13, 2025
    65%

    UK Fines LastPass £1.2 Million Over 2022 Data Breach

    The UK's Information Commissioner's Office fined LastPass £1.2 million for failing to protect user data, leading to a 2022 breach that compromised personal details of 1.6 million individuals. The breach occurred through a multi-stage attack where a hacker compromised an employee's device, stole e...

    Read More »

Related Topics

email exfiltration (2) active exploitation (2) authentication bypass (2) zero-day exploitation (2) adversary-in-the-middle (1) financial losses lawsuits (1) citrix netscaler unpatched devices (1) defense strategies (1)