AiTM/ MFA phishing attacks in combination with new Microsoft protections (2023 edition)

Adversary-in-the-middle phishing attacks are still more common in use. Since the removal of basic authentication from Exchange Online more and more attackers are using more modern attacks like adversary-in-the-middle phishing, cookie theft, and other used attacks. Last year I blogged about several modern

Detection Engineering Weekly #31 - MOVEit, get out the way

AiTM/ MFA phishing attacks in combination with new Microsoft protections (2023 edition)

AiTM/ MFA phishing attacks in combination with new Microsoft protections (2023 edition)

What is AiTM (adversary-in-the-middle)? - Ericom Software

Highs and Lows of the Microsoft Digital Defense Report

Microsoft warns about AiTM phishing campaigns that can circumvent MFA

Phishing attacks bypassing MFA - Michigan SBDC

How 1-Time Passcodes Became a Corporate Liability – Krebs on Security

Advanced BEC Scam Campaign Targeting Executives on O365

Phishing-as-a-Service Gets Smarter: Microsoft Sounds Alarm on AiTM Attacks

AiTM/ MFA phishing attacks in combination with new Microsoft protections (2023 edition)