Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Threat actors downgrade FIDO2 MFA auth in PoisonSeed phishing attack
Identity Theft, Fraud, Scams
July 21, 2025
Bleepingcomputer
A PoisonSeed phishing campaign is bypassing FIDO2 security key protections by abusing the cross-device sign-in feature in WebAuthn to trick users into approving login authentication requests from fake company portals.
Read More
Phishing attack
PoisonSeed
FIDO2 Authentication
WebAuthn
Financial Fraud
Publisher
Previous
Microsoft SharePoint servers under attack via zero-day ...
Malware and Vulnerabilities
Next
Popular npm linter packages hijacked via phishing to dr ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/public_image/helpnetsecurityf766b2dd-a812-41b1-a94d-d09a1bac0c9c.webp)
/https://cyware-ent.s3.amazonaws.com/image_bank/593b_shutterstock_1660725319.jpg)
