AiTM/ MFA phishing attacks in combination with new Microsoft protections (2023 edition)

Adversary-in-the-middle phishing attacks are still more common in use. Since the removal of basic authentication from Exchange Online more and more attackers are using more modern attacks like adversary-in-the-middle phishing, cookie theft, and other used attacks. Last year I blogged about several modern

Jeffrey Appel on LinkedIn: How to protect Azure storage accounts (Blob) using Defender for Storage

Hackers use AiTM attack to monitor Microsoft 365 accounts for BEC scams

Netskope Threat Coverage: Microsoft Discloses New Adversary-in-the-Middle ( AiTM) Phishing Attack - Netskope

AiTM/ MFA phishing attacks in combination with new Microsoft protections (2023 edition)

How to protect against BEC & AiTM attacks via Microsoft 365 Defender, Automatic Attack Disruption, by Derk van der Woude

AITM Attack Targeting Microsoft Email Users

How 1-Time Passcodes Became a Corporate Liability – Krebs on Security

AiTM/ MFA phishing attacks in combination with new Microsoft protections (2023 edition)

Bluepurple Pulse: week ending July 9th - by Ollie

AiTM/ MFA phishing attacks in combination with new Microsoft protections (2023 edition)

From cookie theft to BEC: Attackers use AiTM phishing sites as entry point to further financial fraud

AiTM phishing attacks: What to do when MFA is not enough

Detecting and mitigating a multi-stage AiTM phishing and BEC campaign