AiTM/ MFA phishing attacks in combination with new Microsoft protections (2023 edition)

Adversary-in-the-middle phishing attacks are still more common in use. Since the removal of basic authentication from Exchange Online more and more attackers are using more modern attacks like adversary-in-the-middle phishing, cookie theft, and other used attacks. Last year I blogged about several modern

CISO Monthly Roundup, April 2023: ThreatLabz 2023 Phishing

From cookie theft to BEC: Attackers use AiTM phishing sites as entry point to further financial fraud

New phishing and business email compromise campaigns increase in complexity, bypass MFA

Detecting and mitigating a multi-stage AiTM phishing and BEC campaign

Detecting and mitigating a multi-stage AiTM phishing and BEC campaign

W3LL oiled machine: Group-IB uncovers covert BEC phishing empire targeting Microsoft 365 – report

How to use Microsoft Entra, Internet Access to prevent AiTM attack(s), by Derk van der Woude

What is an Adversary-In-The-Middle (AiTM) Phishing Attack? - 1Kosmos

From cookie theft to BEC: Attackers use AiTM phishing sites as entry point to further financial fraud

Microsoft Warns of Large-Scale AiTM Phishing Attacks Against Over 10,000 Organizations

Protecting Enterprises Against Phishing and Business Email Compromise (BEC) Attacks - Spiceworks