2 matches found
CVE-2024-42345
CVE-2024-42345 affects SINEMA Remote Connect Server prior to v3.2 SP2. The vulnerability is a session-fixation flaw where improper handling of user session establishment/invalidation could allow a remote attacker to bypass the additional multi-factor authentication for user session establishment....
DEV-1101 enables high-volume AiTM campaigns with open-source phishing kit
Adversary-in-the-middle AiTM phishing kits are part of an increasing trend that is observed supplanting many other less advanced forms of phishing. AiTM phishing is capable of circumventing multifactor authentication MFA through reverse-proxy functionality. DEV-1101 is an actor tracked by Microso...