Threat actors downgrade FIDO2 MFA auth in PoisonSeed phishing attack A PoisonSeed phishing campaign is bypassing FIDO2 security key protections by abusing the cross-device sign-in feature in WebAuthn to trick users into approving login authentication requests from…

🚨 Poisoned phishing: attackers downgrade FIDO2 MFA to bypass protections. Even strong auth needs stronger vigilance. 🧑‍💼🎯
#MFABypass #PhishingTactics

ChatGPT creates phisher’s paradise by serving wrong URLs : Crims have cottoned on to a new way to lead you astray

🤖 Chatbots like ChatGPT are unintentionally aiding phishers by suggesting fake or unregistered URLs for major brands 🌐. Criminals are exploiting these AI slip-ups to set traps.
#SecureAI #PhishingTactics ⚠️🔗

📧 Attack Vector
Phishing emails with malicious links or QR codes lead to fake login pages where credentials are harvested. #PhishingTactics