"Gone Phishing: Hackers Leverage Automation to Launch MFA Attacks and SEO Poisoning"
With new automation tools, cybercriminals can now exploit users in many new ways, but at least two stand out as particularly concerning this year: Multi-Factor Authentication (MFA) attacks and Search Engine Optimization (SEO) poisoning. MFA has long been a critical component of business security, and most companies now require it to make it more difficult for adversaries to gain access to and take over accounts. However, cybercriminals are integrating new methods to bypass MFA into their phishing attacks by intercepting or sidestepping generated codes. This year has also seen an increase in SEO poisoning attacks associated with brand impersonation. SEO poisoning is a type of malicious advertising in which threat actors manipulate open-source search engine algorithms to return prioritized results to the user. This article continues to discuss attackers using automation to launch MFA attacks and SEO poisoning.
Submitted by grigby1