Hacker NewsAug 13, 2025
New downgrade attack can bypass FIDO auth in Microsoft Entra ID
https://www.bleepingcomputer.com/news/security/new-downgrade-attack-can-bypass-fido-auth-in-microsoft-entra-id/
#ycombinator #computers #windows #linux #mac #support #tech_support #spyware #malware #virus #security #Account_Takeover #AiTM #FIDO #Microsoft_Entra_ID #Phishing #Session #virus_removal #malware_removal #computer_help #technical_support
New downgrade attack can bypass FIDO auth in Microsoft Entra ID

Security researchers have created a new FIDO downgrade attack against Microsoft Entra ID that tricks users into authenticating with weaker login methods, making them susceptible to phishing and session hijacking.

BleepingComputer
RedPacket SecurityMar 20, 2025

Agentic AI Will Accelerate Account Takeovers by 50%, Warns Gartner - https://www.redpacketsecurity.com/gartner-warns-agentic-ai-will-accelerate-account-takeovers/

#threatintel #AI #account_takeover #deepfakes

Agentic AI Will Accelerate Account Takeovers by 50%, Warns Gartner - RedPacket Security

Within two years, AI agents are expected to enhance the efficiency with which threat actors hijack exposed accounts by 50%, according to a recent warning from

RedPacket Security
RedPacket SecurityFeb 2, 2025

HTTP Clients Surge in Account Takeover Attacks on Microsoft 365 - https://www.redpacketsecurity.com/attackers-increase-use-of-http-clients-for-account-takeovers/

#threatintel #cybersecurity #account_takeover #HTTP_clients

HTTP Clients Surge in Account Takeover Attacks on Microsoft 365 - RedPacket Security

In a concerning trend, cybercriminals have been seen leveraging legitimate HTTP client tools to carry out account takeover (ATO) attacks on Microsoft 365

RedPacket Security
RedPacket SecurityJan 29, 2025

API Supply Chain Attacks: Major Risks for Millions of Airline Users - https://www.redpacketsecurity.com/api-supply-chain-attacks-put-millions-of-airline-users-at-risk/

#threatintel #account_takeover #vulnerability #API_security

API Supply Chain Attacks: Major Risks for Millions of Airline Users - RedPacket Security

A recently discovered vulnerability in a popular online travel service has put millions of airline users worldwide at risk of account takeover.

RedPacket Security
 Hacker NewsMar 15, 2024
SIM swappers hijacking phone numbers in eSIM attacks
https://www.bleepingcomputer.com/news/security/sim-swappers-hijacking-phone-numbers-in-esim-attacks/
#ycombinator #computers #windows #linux #mac #support #tech_support #spyware #malware #virus #security #Account_Takeover #Credential_Theft #ESIM #Hijack #SIM_Swap #virus_removal #malware_removal #computer_help #technical_support
SIM swappers hijacking phone numbers in eSIM attacks

SIM swappers have adapted their attacks to steal a target's phone number by porting it into a new eSIM card, a digital SIM stored in a rewritable chip present on many recent smartphone models.

BleepingComputer
 Hacker NewsMar 15, 2024
Former telecom manager admits to doing SIM swaps for $1k
https://www.bleepingcomputer.com/news/security/former-telecom-manager-admits-to-doing-sim-swaps-for-1-000/
#ycombinator #computers #windows #linux #mac #support #tech_support #spyware #malware #virus #security #Account_Takeover #Court_Case #Hijack #Legal #SIM #SIM_Swap #virus_removal #malware_removal #computer_help #technical_support
Former telecom manager admits to doing SIM swaps for $1,000

A former manager at a telecommunications company in New Jersey pleaded guilty to conspiracy charges for accepting money to perform unauthorized SIM swaps that enabled an accomplice to hack customer accounts.

BleepingComputer