Adversary-in-the-Middle (AiTM) phishing techniques are on the rise and are a component of the Phishing-as-a-Service (PhaaS) cybercrime model, according to a warning from Microsoft. According to Microsoft researchers, this development in the PhaaS ecosystem enables attackers to conduct comprehensive phishing attacks targeted at businesses on a big scale.
The first method makes use of reverse proxy servers, with the phishing page acting as a go-between for the user’s device and the authentic website. Without the user’s knowledge, this process records session cookies, 2FA codes, and login information.