Microsoft has observed a proliferation of adversary-in-the-middle (AiTM) techniques deployed through phishing-as-a-service (PhaaS) platforms, the company explained in a series of tweets posted on August 28, 2023. “This emphasizes the importance of MFA through methods like Microsoft Authenticator, FIDO2 security keys and certificate-based authentication in securing identities,” the company said.


More

The Verge: You can now sign into a Microsoft Account without a password using a security key

Microsoft is the first company to support passwordless authentication using FIDO2 WebAuthn and CTAP2 standards…

Read More →

Bank Info Security: State of the Authentication Landscape

In this Bank Info Security article, Shane Weeden, an authentication expert with IBM Security, discusses…

Read More →

Tech Target: How can U2F authentication end phishing attacks?

Tech Target reports on Google’s adoption of FIDO U2F security keys as a strategy to…

Read More →