The notorious Tycoon 2FA Phishing-as-a-Service (PhaaS) platform is back, proving that even a global law enforcement takedown cannot keep cybercriminals offline for long. Originally attributed to the threat actor Storm-1747, this adversary-in-the-middle (AiTM) kit specializes in bypassing multi-factor authentication (MFA) for Microsoft 365 and Google Workspace accounts. Despite a massive coordinated disruption by Microsoft and […]
The post Tycoon 2FA AiTM Kit Targets Entra ID and Google Workspace In MFA Bypass Campaigns appeared first on Cyber Security News.