Researchers Warns of Large-Scale AiTM Attacks Targeting Enterprise Users


A new, widespread phishing campaign has been seen that circumvents security measures and compromises workplace email accounts by leveraging adversary-in-the-middle (AitM) tactics.

It employs an adversary-in-the-middle (AitM) attack method that can get through multi-factor authentication, according to a paper published on Tuesday by Zscaler researchers Sudeep Singh and Jagadeeswar Ramanukolanu. The campaign is specifically meant to get the attention of end users in businesses who utilise Microsoft’s email services. Read More…