ITWeb

Unmasking AiTM: The resurgence of adversary in the middle attacks in cyber security

While AiTM is not a novel concept, it has undergone a metamorphosis, transforming the tools employed into a potent weapon in the arsenal of cyber adversaries. Initially witnessed in 2017, AiTM are ...
Virtualization Review

Adversary in The Middle (AiTM) Trends

Is your business enforcing Multi-Factor Authentication (MFA) when you login to your computer or cloud services? Perhaps you're using an app on your phone to do this? If they're not, they absolutely ...
Bleeping Computer

MoustachedBouncer hackers use AiTM attacks to spy on diplomats

A cyberespionage group named 'MoustachedBouncer' has been observed using adversary-in-the-middle (AitM) attacks at ISPs to hack foreign embassies in Belarus. According to an ESET report released today ...
CSOonline

Stopping AiTM attacks: The defenses that actually work after authentication succeeds

AiTM attacks don't steal passwords; they copy the result of a real login. You need to watch what happens after the user logs in to catch a hijacked session. The ...
Dark Reading

Evilginx Tool (Still) Bypasses MFA

Bypassing multifactor authentication isn't hard, if you're willing to get a little evil. Sophos researchers this week detailed how Evilginx, a malicious version of the widely used open source NGINX ...
TechRadar

Getting to grips with Adversary-in-the-Middle threats

In cybersecurity, defenders are often a victim of their own success. When enough organizations adopt a successful solution, threat actors adapt. For a long time, multi-factor authentication (MFA) was ...