Sneaky 2FA The Rise of AiTM Phishing-as-a-Service Attacks

Summary In December 2024, researchers identified a new Adversary-in-the-Middle (AiTM) phishing kit named Sneaky 2FA, targeting Microsoft 365 accounts. This kit, active since at least October 2024, is offered as a Phishing-as-a-Service (PhaaS) by the ...