Microsoft email users are under attack from a new phishing campaign. The campaign uses the adversary-in-the-middle (AiTM) technique to even bypass multi-factor authentication (MFA) protection.
Man in the middle attack RSS
The Linux kernel developers have switched links in the documentation over to HTTPS. The move aims to prevent man-in-the-middle attacks against kernel developers, luckily no such attacks have occurred.
Mozilla and Google have taken measures to invalidate a root CA certificate from being used by the Kazakh government in Firefox and Chrome to intercept users' secure HTTPS connections to websites.
Google has announced that it will begin blocking any sign-in attempt from embedded browser frameworks from June as part of an effort to protect users from man-in-the-middle attacks.