news 
Google and Microsoft users are being warned about a new type of two-factor authentication (2FA) bypass attack that has been reported to be highly effective. The warning comes after security researchers at Sophos have discovered that the Rockstar 2FA exploit service, which was previously thought to be down for good, has actually evolved into a more sinister threat.
Dubbed “FlowerStorm,” this new type of phishing-as-a-service resource shares many similarities with its predecessor, including the format of its phishing portal pages and connection to its backend server. The researchers at Sophos have warned that Google and Microsoft users should be on high alert for any signs of phishing, as this is typically how these types of attacks begin.
It’s worth noting that Rockstar 2FA exploit service was previously thought to be down for good after a partial collapse of its infrastructure was reported by the security researchers. However, it appears that a significant number of users may still be at risk from these types of attacks.
The new threat, known as FlowerStorm, is reportedly capable of bypassing two-factor authentication checks and allowing attackers to gain unauthorized access to user accounts. According to Sophos, this type of attack has been active since at least June 2024, which means that many users may already be vulnerable.
To mitigate the risk of falling victim to these types of attacks, Google and Microsoft users are advised to utilize passkeys as an additional layer of protection against phishing and other social engineering attacks. Passkeys have been shown to be a stronger form of authentication than traditional methods such as SMS-based one-time passwords and app-based OTPs.
In addition, Google has emphasized that its platform offers numerous protections to combat these types of attacks, including the use of passkeys, which can help reduce the impact of phishing and other social engineering attacks.
Source: www.forbes.com
