Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Alerts

New MFA Phishing Targets Microsoft, Gmail

March 26, 2024
Reading Time: 3 mins read
in Alerts
New MFA Phishing Targets Microsoft, Gmail

Cybercriminals are leveraging a new phishing kit, Tycoon 2FA, to target Microsoft 365 and Gmail accounts, bypassing two-factor authentication (2FA) measures. Discovered by Sekoia analysts in 2023, the platform has seen continuous enhancements, indicating a persistent effort to improve its efficacy. Tycoon 2FA operates through a multi-step process, involving session cookie theft and mimicking 2FA challenges, enabling attackers to deceive victims seamlessly and evade security measures.

The latest version of Tycoon 2FA, released in 2024, boasts significant modifications that enhance its phishing and evasion capabilities. These enhancements include updates to JavaScript and HTML code, as well as more extensive filtering to block bot traffic. Additionally, the platform now delays loading malicious resources until after resolving the Cloudflare Turnstile challenge, further obscuring its activities.

Sekoia reports a substantial scale of operations for Tycoon 2FA, with evidence of broad cybercriminal utilization and a significant number of Bitcoin transactions linked to the operators. The threat actors’ Bitcoin wallet has received substantial amounts of cryptocurrency, indicating the financial success of their phishing endeavors. Tycoon 2FA joins a plethora of PhaaS platforms offering cybercriminals various options to bypass 2FA protections, highlighting the ongoing threat landscape faced by organizations and individuals alike.

For those seeking to defend against Tycoon 2FA and similar threats, Sekoia provides a repository with over 50 indicators of compromise (IoCs), aiding in the detection and mitigation of these phishing operations. This underscores the importance of proactive security measures, including robust email filtering, employee awareness training, and continuous monitoring for suspicious activities. As cybercriminals continue to evolve their tactics, vigilance and adaptation remain crucial in safeguarding against phishing attacks targeting sensitive accounts and data.

Reference:
  • Microsoft 365 and Gmail Accounts Targeted by New MFA-Phishing Kit

Tags: Cyber AlertCyber Alerts 2024Cyber RiskCyber threatCybersecurityGmailMarch 2024Microsoft 365SekoiaTycoon 2FA
ADVERTISEMENT

Related Posts

FreeDrain Phishing Steals Crypto Funds

FBI Warns Cybercriminals Exploit Routers

May 9, 2025
FreeDrain Phishing Steals Crypto Funds

X Scam Targets Crypto Users with Fake Ads

May 9, 2025
FreeDrain Phishing Steals Crypto Funds

FreeDrain Phishing Steals Crypto Funds

May 9, 2025
COLDRIVER Hackers Target Sensitive Data

COLDRIVER Hackers Target Sensitive Data

May 8, 2025
COLDRIVER Hackers Target Sensitive Data

Cisco Fixes Flaw in IOS Wireless Controller

May 8, 2025
COLDRIVER Hackers Target Sensitive Data

CoGUI Targets Consumer and Finance Brands

May 8, 2025

Latest Alerts

X Scam Targets Crypto Users with Fake Ads

FBI Warns Cybercriminals Exploit Routers

FreeDrain Phishing Steals Crypto Funds

CoGUI Targets Consumer and Finance Brands

COLDRIVER Hackers Target Sensitive Data

Cisco Fixes Flaw in IOS Wireless Controller

Subscribe to our newsletter

    Latest Incidents

    LockBit Ransomware Data Leaked After Hack

    Spanish Consumer Group Faces Cyberattack

    Education Giant Pearson Hit by Data Breach

    Masimo Cyberattack Disrupts Manufacturing

    Cyberattack Targets Tepotzotlán Facebook

    West Lothian Schools Hit by Ransomware

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial