Cybersecurity researchers have identified a new attack method enabling threat actors to circumvent Fast IDentity Online (FIDO) protections by tricking users into approving authentication requests from fake company login sites. This activity, linked to the threat actor PoisonSeed, was noted during a phishing campaign observed by Expel.
Explain It To Me Like I’m 5: Cybersecurity researchers have revealed a new method that lets hackers trick users into approving fake login requests, undermining the security of FIDO key protections in a phishing campaign linked to a group called PoisonSeed.
Want More Context? 🔎
