In recent months, a new phishing toolkit known as PoisonSeed has emerged, targeting both individual users and enterprise organizations with unprecedented sophistication. Unlike traditional phishing kits that harvest only usernames and passwords, PoisonSeed employs an adversary-in-the-middle (AitM) approach to intercept multi-factor authentication (MFA) tokens and session cookies. Victims receive spear-phishing emails masquerading as notifications from […]
The post PoisonSeed Phishing Kit Bypasses MFA to Acquire Credentials from Individuals and Organizations appeared first on Cyber Security News.
This article has been indexed from Cyber Security News
Read the original article: