In our latest TI report, baseVISION uncovers a phishing campaign that abuses TikTok’s open redirect feature to hijack Microsoft credentials. The attackers use multi-stage redirect chains, IP-based cloaking, and Adversary-in-the-Middle (AiTM) phishing pages to bypass MFA and steal session tokens. We break down the full attack chain, indicators of compromise, Read more…
In a world where cyber threats evolve faster than ever, one thing remains constant: attackers are still betting on human error. Our latest report, “Click, Paste and Compromise: When User Trust Becomes Your Greatest Vulnerability,” dives deep into the rise of ClickFix—a social engineering technique that tricks users into executing malicious commands through Read more…
baseVISION reaches a new milestone in Microsoft Security This specialization not only confirms our deep expertise, but also our proven project experience with Microsoft Purview and related solutions. It marks another important milestone for us – as we now hold all four available Microsoft Security Advanced Specializations. What is this Read more…