Forum Discussion

BrittanyCCP's avatar
BrittanyCCP
Icon for Microsoft rankMicrosoft
Jan 02, 2024

New Blog | Addressing Data Exfiltration: Token Theft Talk

Stolen authentication artifacts – tokens and cookies – can be used to impersonate the victim and gain access to everything the victim had access to. Up until a few years ago, token theft was a rare attack and was most often exercised by corporate Red Teams. Why? Because it’s simpler to steal a password than a cookie. However, with multifactor authentication (MFA) becoming prevalent, we’re seeing real-life attacks involving artifact theft and replay.

Read the full blog post here: Addressing Data Exfiltration: Token Theft Talk - Microsoft Community Hub

No RepliesBe the first to reply

Resources