Stealing 2FA Tokens on Red Teams with CredSniper – Black Hills Information Security

CERT-LatestNews SocialEngineering ThreatsCybercrime

More and more organizations are rolling out mandatory 2FA enrollment for authentication to external services like GSuite and OWA. While this is great news because it creates an added level of security to the external perimeter, it also forces red teams and pentest organizations to innovate new….