Preview image for a blog post

Jalisco & OmegaLord: Deep Dive into Advanced Microsoft 365 Phishing Tactics via Device Code Flow and OAuth Abuse

Jalisco and OmegaLord phishing kits exploit Microsoft 365 device code flows and OAuth to bypass MFA, gain persistent access, and compromise accounts.
Preview image for a blog post

Real-Time Vishing Kits: The New Frontier in MFA Bypass and Threat Actor Control

Voice phishing kits empower threat actors with real-time control, bypassing MFA through sophisticated call orchestration and session hijacking.