Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Cookie-Bite: How Your Digital Crumbs Let Threat Actors Bypass MFA and Maintain Access to Cloud Environments
Threat Intel & Info Sharing
April 23, 2025
Varonis
A new proof-of-concept attack dubbed Cookie-Bite demonstrates how a malicious Chrome extension can steal Azure Entra ID session cookies to bypass multi-factor authentication (MFA) and maintain unauthorized access to Microsoft cloud services.
Read More
Cookie-Bite Chrome Extension
Azure Entra ID
Publisher
Previous
Samsung One UI Vulnerability Leaks Sensitive Data in Pl ...
Malware and Vulnerabilities
Next
“ConfusedComposer”: GCP Composer Vulnerability Allows P ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/fdfe_shutterstock_2575486237.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/fb3e_shutterstock_1760638328.jpg)
