A sophisticated new phishing toolkit named “SessionShark” has been specifically designed to circumvent Microsoft Office 365’s multi-factor authentication (MFA) protections. SessionShark is being marketed on underground forums as a turnkey phishing-as-a-service (PhaaS) solution. It enables even low-skilled threat actors to hijack Office 365 accounts by stealing session tokens and rendering MFA ineffective. This development signals […]
The post SessionShark’ – New Toolkit Attacking Microsoft Office 365 Users’ Bypassing MFA Protections appeared first on Cyber Security News.
This article has been indexed from Cyber Security News