New "Storm" infostealer skips local decryption, sending browser data to attacker servers. Varonis shows how server-side decryption enables session hijacking, bypassing passwords and MFA.

AiTM attacks don't steal passwords; they copy the result of a real login. You need to watch what happens after the user logs ...

North Korean group Kimsuky is using QR code phishing to steal credentials Attacks bypass MFA via session token theft, exploiting unmanaged mobile devices outside EDR protections FBI urges ...

In today’s 2-Minute Tech Briefing, researchers flag fake Chrome productivity extensions stealing session tokens from Workday, NetSuite, and SuccessFactors. Satya Nadella argues Europe’s sovereignty ...

Authentication tokens aren't actual physical tokens, of course. But when these digital identifiers aren't expired regularly or pinned for use by a specific device only, they may as well be made of ...

Threat actors are showcasing a service called "SessionShark 0365 2FA/MFA," which is a phishing-as-a-service (PhaaS) toolkit intended for fellow hackers. The creators of the toolkit are attempting to ...

The threat landscape continues to evolve, and cybersecurity professionals must keep pace with threat actors’ changing tactics and objectives. A recent supply attack that reportedly affected hundreds ...

A critical vulnerability in OpenAI Group PBC’s Codex coding agent could have exposed sensitive GitHub authentication tokens through a command injection flaw, according to a new report out today from ...