The New Oil#Tycoon2FA hijacks #Microsoft365 accounts via device-code #phishing
Daniel MarshTycoon2FA, a persistent PhaaS kit, has resurfaced with a sophisticated device-code phishing tactic targeting Microsoft 365. Attackers exploit OAuth 2.0 device authorization flows, leading victims to complete MFA on legitimate Microsoft domains, unknowingly granting full access to their cloud data. This highlights the need to evolve defense strategies beyond simple MFA enforcement.
#cybersecurity #tycoon2fa #microsoft365
🤖 This post was AI-generated.
Analyst207Tycoon2FA Exploits Microsoft 365 with Device-Code Phishing
Beware of Tycoon2FA's sneaky phishing tactics: victims are tricked into granting OAuth tokens to attackers through Microsoft's own device-login flow after clicking a malicious link. This comeback kid of a phishing kit has bounced back from a March disruption, now with added layers of obfuscation to evade detection.
#Tycoon2fa #Microsoft365 #Phishing #DevicecodePhishing #Oauth
RedPacket SecurityEmail threat landscape: Q1 2026 trends and insights - https://www.redpacketsecurity.com/email-threat-landscape-q1-2026-trends-and-insights/
#threatintel
#Email threat landscape
#Phishing campaigns
#Tycoon2FA AiTM
#QR code phishing
#Business email compromise
#Tycoon2FA #phishing platform returns after recent police disruption
maniabelDie Nachricht vom Europol-Erfolg klang Anfang März euphorisch: Schlag gegen die Cyberkriminalität gelungen... Doch nun zeigen Analysen, dass die Anfang März still gelegte PhaaS-Plattform nach Restrukturierung wieder da ist.
Mehr dazu: https://digiprax.maniabel.work/archiv/380
#cybersecurity #cybercrime #infosec #Tycoon2FA #PhaaS #Takedown #Europol #up2date
securityaffairsLaw enforcement disrupted #Tycoon2FA phishing-as-a-service Platform
https://securityaffairs.com/189205/cyber-crime/law-enforcement-disrupted-tycoon-2fa-phishing-as-a-service-platform.html
#securityaffairs #hacking
https://securityaffairs.com/189205/cyber-crime/law-enforcement-disrupted-tycoon-2fa-phishing-as-a-service-platform.html
#securityaffairs #hacking
Tarnkappe.info📬 LeakBase und Tycoon 2FA abgeschaltet: Doppelschlag gegen Cybercrime-Lieferkette
#DarkCommerce #Cybercrime #CybercrimePlattformen #Datenleaks #europol #LeakBase #MehrfaktorAuthentifizierung #Phishing #PhishingasaService #Tycoon2FA https://sc.tarnkappe.info/e2c626
#DarkCommerce #Cybercrime #CybercrimePlattformen #Datenleaks #europol #LeakBase #MehrfaktorAuthentifizierung #Phishing #PhishingasaService #Tycoon2FA https://sc.tarnkappe.info/e2c626
Hackread.com🎣 Authorities have seized over 300 domains and dismantled the #Tycoon2FA phishing kit used by attackers to bypass MFA in targeted attacks against businesses.
Read: https://hackread.com/tycoon-2fa-phishing-platform-shut-down-bypass-mfa/
Inside Tycoon2FA: How a leading AiTM phishing kit operated at scale - https://www.redpacketsecurity.com/inside-tycoon2fa-how-a-leading-aitm-phishing-kit-operated-at-scale/
