#AitMattacks

Passkey Redaction Attacks Subvert GitHub, Microsoft Authentication

by

July 2, 2024 at 06:08PM Many online accounts using passkey technology are still vulnerable to adversary-in-the-middle (AitM) attacks, allowing attackers to manipulate the login screen and remove passkey authentication. This discovery by security researcher Joe Stewart highlights the need for more secure authentication methods and account recovery options. Enterprises can mitigate this risk by implementing … Read more

Blackwood hackers hijack WPS Office update to install malware

by

January 25, 2024 at 03:31PM The advanced threat actor ‘Blackwood’ has been using the NSPX30 malware in cyberespionage attacks since at least 2018. Targeting China, Japan, and the UK, the adversary delivers the malware through legitimate software update mechanisms. NSPX30, an evolved implant with sophisticated capabilities, conceals its activities and intercepts data to evade detection. … Read more