![\"\"](\"https:\/\/www.sysbus.eu\/wp-content\/uploads\/2025\/12\/Infoblox_dns-uncovers-infrastructure-used-in-sso-attacks-image2-002-1024x576.webp\")
Eine monatelang aktive Phishing-Kampagne hat mithilfe des Tools \u201eEvilginx\u201c gezielt die Multi-Faktor-Authentifizierung (MFA) mehrerer US-amerikanischer Hochschulen ausgehebelt. Wie Infoblox Threat Intelligence (ITI) berichtet, nutzten die Angreifer ein umfangreiches Netzwerk aus \u00fcber 70 Domains, um Studierende und Mitarbeitende renommierter Universit\u00e4ten \u2013 darunter die University of California und die University of Michigan \u2013 ins Visier zu nehmen.
\nEvilginx ist ein weit verbreitetes Open-Source-Framework, das \u201eAdversary-in-the-Middle\u201c-Techniken (AiTM) einsetzt, um Logins abzufangen und Session-Cookies zu stehlen. Dadurch k\u00f6nnen Angreifer selbst dann Konten \u00fcbernehmen, wenn MFA aktiviert ist.<\/p>\n","protected":false},"author":81,"featured_media":30477,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[4],"tags":[2645,23956,11311,4711,3392],"class_list":["post-30476","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","tag-cybersicherheit","tag-evilginx","tag-infoblox","tag-mfa","tag-phishing"],"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/www.sysbus.eu\/index.php?rest_route=\/wp\/v2\/posts\/30476","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.sysbus.eu\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.sysbus.eu\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.sysbus.eu\/index.php?rest_route=\/wp\/v2\/users\/81"}],"replies":[{"embeddable":true,"href":"https:\/\/www.sysbus.eu\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=30476"}],"version-history":[{"count":1,"href":"https:\/\/www.sysbus.eu\/index.php?rest_route=\/wp\/v2\/posts\/30476\/revisions"}],"predecessor-version":[{"id":30479,"href":"https:\/\/www.sysbus.eu\/index.php?rest_route=\/wp\/v2\/posts\/30476\/revisions\/30479"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.sysbus.eu\/index.php?rest_route=\/wp\/v2\/media\/30477"}],"wp:attachment":[{"href":"https:\/\/www.sysbus.eu\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=30476"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.sysbus.eu\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=30476"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.sysbus.eu\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=30476"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}