New tool automates phishing attacks that bypass 2FA

New tool automates phishing attacks that bypass 2FA

Trust in two-factor authentication has slowly eroded in the last month after release of Amnesty International report and Modlishka tool. <…>

All attackers need is a phishing domain name (to host on the Modlishka server) and a valid TLS certificate to avoid alerting users of the lack of an HTTPS connection

https://www.zdnet.com/article/new-tool-automates-phishing-attacks-that-bypass-2fa/

bosinus

Kommentarer inaktiverade.