The phishing-as-a-service platform was popular among cyber threat actors because of its ability to bypass multi-factor ...

Coinbase, Microsoft, and Europol shut down Tycoon 2FA, a phishing platform that bypassed multi-factor authentication and targeted 100,000 organizations.

Tycoon2FA was among the world's largest phishing operations. It allowed criminals to gain undetected access to email accounts ...

Accidentally clicking a link in a phishing email can be worrying. Although it doesn't automatically mean your device is compromised, some malicious websites may attempt to download malware in the ...

Two-factor authentication (2FA) prevents hackers from gaining access to your accounts even if they have your password. Here ...

If you are leasing a car, what’s the point of paying thousands of dollars due at lease signing? My contract says tax, title, fees and licensing — but then wouldn’t I have to pay that again at the end ...

Some 2FA-phishing attacks are becoming significantly harder to spot as threat actors blend two previously distinct phishing-as-a-service (PhaaS) kits: Salty2FA and Tycoon2FA, into a single hybrid ...

The rise of the Tycoon 2FA phishing kit should serve as a global warning siren for every enterprise. This is not a tool for elite hackers. This is a turnkey kit that anyone with a browser can use to ...

Everyone knows what a password is. But we can’t say the same for two-factor authentication or passkeys, which is a shame because these two security features dramatically boost the safety of your ...

A new report released today by cloud cybersecurity firm Barracuda Networks Inc. details a rapidly evolving phishing-as-a-service kit dubbed Whisper 2FA that’s designed to steal Microsoft 365 ...

The phishing platform “Whisper 2FA” has rapidly become one of the most active tools used in large-scale credential theft campaigns, according to new research from Barracuda. Since July 2025, the ...