By Trevor Olson Recently, SlashNext (and many others) published an interesting article on ‘SessionShark,’ a phishing-as-a-service toolkit designed to steal session tokens and bypass Microsoft MFA. Their discussion around the topic was interesting and highlights the evolving tactics of cybercriminals. (Source: “SessionShark Steals Session Tokens to Slip Past Office 365 MFA) From my perspective, there […]
