home.social

#tycoon2fa — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #tycoon2fa, aggregated by home.social.

  1. Die Nachricht vom Europol-Erfolg klang Anfang März euphorisch: Schlag gegen die Cyberkriminalität gelungen... Doch nun zeigen Analysen, dass die Anfang März still gelegte PhaaS-Plattform nach Restrukturierung wieder da ist.

    Mehr dazu: digiprax.maniabel.work/archiv/

    #cybersecurity #cybercrime #infosec #Tycoon2FA #PhaaS #Takedown #Europol #up2date

  2. Die Nachricht vom Europol-Erfolg klang Anfang März euphorisch: Schlag gegen die Cyberkriminalität gelungen... Doch nun zeigen Analysen, dass die Anfang März still gelegte PhaaS-Plattform nach Restrukturierung wieder da ist.

    Mehr dazu: digiprax.maniabel.work/archiv/

    #cybersecurity #cybercrime #infosec #Tycoon2FA #PhaaS #Takedown #Europol #up2date

  3. 🎣 Authorities have seized over 300 domains and dismantled the #Tycoon2FA phishing kit used by attackers to bypass MFA in targeted attacks against businesses.

    Read: hackread.com/tycoon-2fa-phishi

    #CyberSecurity #CyberCrime #Phishing #Scam

  4. 🥂 🍾 Tycoon down!

    "Global phishing-as-a-service platform taken down in coordinated public-private action"

    A major phishing-as-a-service platform used to bypass multi-factor authentication (MFA) and enable large-scale account compromise has been disrupted following a coordinated international operation supported by Europol.

    The service, known as Tycoon 2FA, provided cybercriminals with a subscription-based toolkit designed to intercept live authentication sessions and gain unauthorised access to online accounts, including those protected by additional security layers."
    👇
    europol.europa.eu/media-press/

    "Europol, Microsoft, TrendAI™ and Collaborators Halt Tycoon 2FA Operations"
    👇
    trendmicro.com/en_us/research/

    #CyberVeille #Tycoon2FA #Europol

  5. 🎣 Leveraging our telemetry and proactive hunting, we ranked the most widespread AitM phishing kits - #Tycoon2FA, #Storm1167, #NakedPages, #Sneaky2FA, and more.

    Additionally, the article includes summary sheets covering 11 AitM phishing kits.

  6. Phishing-as-a-service is an area that is increasing rapidly according to research by security vendor Barracuda Networks, which says it has detected a “massive spike” in PhaaS attacks in the first two months of this year.

    computing.co.uk/news/2025/secu

    #phishing #phaas #tycoon2fa #evilproxy #infosec #cybersecurity #barracuda #technews

  7. Ah! Found the tool used to do this Javascript obfuscation method.

    benjaminaster.com/invisible-ja

    Ran into this while digging at a new obfuscation method in use by #Tycoon2FA . The new method uses the following tool by the same author (@martinkleppe) as JSFuck.

    aem1k.com/invisible/encoder/

  8. Here's how the PhaaS #Tycoon2FA uses the anti-bot service #BlackTDS.

    rmceoin.github.io/malware-anal

    This traffic happens between a hosted server and the anti-bot service, so in a sense this is potentially intel for hosting services teams.

    #threatintel

  9. Here's how the PhaaS #Tycoon2FA uses the anti-bot service #BlackTDS.

    rmceoin.github.io/malware-anal

    This traffic happens between a hosted server and the anti-bot service, so in a sense this is potentially intel for hosting services teams.

    #threatintel

  10. Here's how the PhaaS #Tycoon2FA uses the anti-bot service #BlackTDS.

    rmceoin.github.io/malware-anal

    This traffic happens between a hosted server and the anti-bot service, so in a sense this is potentially intel for hosting services teams.

    #threatintel

  11. Here's how the PhaaS #Tycoon2FA uses the anti-bot service #BlackTDS.

    rmceoin.github.io/malware-anal

    This traffic happens between a hosted server and the anti-bot service, so in a sense this is potentially intel for hosting services teams.

    #threatintel

  12. Here's how the PhaaS #Tycoon2FA uses the anti-bot service #BlackTDS.

    rmceoin.github.io/malware-anal

    This traffic happens between a hosted server and the anti-bot service, so in a sense this is potentially intel for hosting services teams.

    #threatintel

  13. I saw a very interesting Javascript obfuscation method being used by #Tycoon2FA this week. It got me inspired to attempt to better understand it by writing an analysis of it.

    rmceoin.github.io/malware-anal