惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

H
Hackread – Cybersecurity News, Data Breaches, AI and More
C
Check Point Blog
Hacker News: Ask HN
Hacker News: Ask HN
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
WordPress大学
WordPress大学
P
Proofpoint News Feed
V
Visual Studio Blog
C
Cyber Attacks, Cyber Crime and Cyber Security
N
Netflix TechBlog - Medium
C
CXSECURITY Database RSS Feed - CXSecurity.com
博客园 - 聂微东
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
博客园 - 叶小钗
Cisco Talos Blog
Cisco Talos Blog
S
Schneier on Security
T
Threat Research - Cisco Blogs
腾讯CDC
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
The Hacker News
The Hacker News
Google DeepMind News
Google DeepMind News
Microsoft Security Blog
Microsoft Security Blog
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
GbyAI
GbyAI
N
News | PayPal Newsroom
L
LINUX DO - 最新话题
酷 壳 – CoolShell
酷 壳 – CoolShell
P
Palo Alto Networks Blog
T
Tenable Blog
S
Secure Thoughts
T
Threatpost
V2EX - 技术
V2EX - 技术
大猫的无限游戏
大猫的无限游戏
Martin Fowler
Martin Fowler
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
Vercel News
Vercel News
罗磊的独立博客
P
Privacy & Cybersecurity Law Blog
Engineering at Meta
Engineering at Meta
小众软件
小众软件
Google DeepMind News
Google DeepMind News
N
News and Events Feed by Topic
Y
Y Combinator Blog
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
C
Cybersecurity and Infrastructure Security Agency CISA
P
Proofpoint News Feed
L
Lohrmann on Cybersecurity
P
Privacy International News Feed
H
Heimdal Security Blog
量子位
B
Blog

Enterprise – Silicon Republic

Commission refers Ireland to CJEU for failing to enact cyber rules Cloudflare to block AI crawlers from ad-supported webpages by default Google ordered to pay Klarna nearly $2bn in abuse-of-power row Upcoming iPhone 18 model leaked in Tata Electronics hack Data breaches going unreported – Irish compliance survey Cybersecurity warning for Irish businesses ahead of EU Presidency Dublin's TensorX to partner with Solstice on sovereign European AI Irish Internet Hotline named Trusted Flagger under EU Digital Services Act Don't panic, prepare: A cyber expert's advice on the Mythos hype Day-to-day cyber incidents driving loss for SMEs, finds report Anthropic to reassess Claude Fable 5 AI development restrictions after backlash Anthropic rolls out ‘Mythos-like’ AI model Claude Fable 5 EMEA firms underestimating 'routine risks', finds cyber report More than 20,000 Instagram accounts hacked using Meta AI bug Report: Irish firms cut cybersecurity spend despite rising risks TCS launches sovereign cloud offering in Europe ECB urging action on AI from lenders’ IT departments Hackers access GitHub, download codebase in Grafana Labs breach Europe's public sector deploying AI faster than it can manage – report UK watchdog probes Microsoft over interoperability issues Foxconn confirms cyberattack on North American facilities Clear gap between AI expectations and preparedness, finds report Canvas parent settles with hacker group that stole user data ShinyHunters demands ransom after Canvas hack EU agrees to simpler AI rules and complete ‘nudification’ ban What’s the difference between IT and OT security? Opinion: Why ISO 27001 alone won't save your data from itself Report: Medical device cyberattacks on the rise AI race intensifies with Google's new agent management platform Anthropic probing reported Mythos leak on Discord Nearly 75pc of AI’s economic value captured by just 20pc of companies Anthropic’s Mythos to bolster cybersecurity at UK banks The death of ETL: Is zero-copy a ‘liberation’ for data teams? After Anthropic, OpenAI launches cyber-specific AI model The Interview: Dentons' Carlo Salizzo on three forces defining digital law Anthropic's Mythos a game-changer, NCSC chief tells Oireachtas Mythos just first of power models to come: Anthropic co-founder New XP95 hacker group targets Dublin recruitment platform Healthdaq OpenAI apps for MacOS exposed by threat Mythos testing begins as governments raise cyber concerns Anthropic's Glasswing project employs Mythos to prevent AI cyberattacks Is your data integrity framework just a fancy spreadsheet? Ireland begins digital wallet testing and consultation How is Australia working to make data centres more sustainable? China's DeepSeek suffers rare outage lasting several hours ShinyHunters claims responsibility for European Commission breach Security first: Why cybersecurity needs to adapt in the age of AI iOS hacking tool 'DarkSword' leaked on GitHub China’s Alibaba could launch Qwen for enterprise this week Stryker's Cork site hit by global cyberattack Office.eu and the hope for a digitally sovereign Europe How fully homomorphic encryption is reshaping secure AI Hacking tool with possible US origins targets outdated iPhones Pure Storage, now Everpure, to acquire 1touch Hacker used commercial AI to breach 600 firewalls: AWS Why cloud strategies are pivoting from reaction to precision ‘Complexity is where cyber risk tends to grow’ ‘In cyber, bridging the gap between the server room and boardroom is crucial’ AWS expanding in Belgium, Netherlands and Portugal, amid sovereign cloud launch
Major phishing operation disrupted in joint Europol action
Suhasini Srinivasaragavan · 2026-03-05 · via Enterprise – Silicon Republic

Tycoon 2FA accounted for around 62pc of all phishing attempts blocked by Microsoft by mid-2025.

A joint cybersecurity operation has disrupted one of the world’s largest phishing-as-a-service platforms, called ‘Tycoon 2FA’ and used to bypass multi-factor authentication (MFA) and hack user accounts.

The operation was coordinated by Europol’s European Cybercrime Centre, while technical disruption was led by Microsoft. Participating industry partners also included Cloudflare, Coinbase, Proofpoint and Esentire, among others.

Japanese cybersecurity firm Trend Micro shared intelligence that allowed the investigation to initiate, Europol noted. Law enforcement authorities from several European countries, including Spain and the UK, also participated.

Tycoon 2FA provided cybercriminals with a subscription-based toolkit that intercepted live authentication sessions to gain unauthorised access to online accounts, including those that were protected by additional security layers.

The platform has been active since at least 2023, according to Europol, and enabled “thousands” of cybercriminals to access email and cloud-based service accounts. Experts determined that the platform generated “tens of millions” of phishing emails each month, attempting to gain access to nearly 100,000 organisations globally, including schools, hospitals and public institutions.

“Campaigns leveraging Tycoon 2FA have appeared across nearly all sectors including education, healthcare, finance, non-profit and government,” said Microsoft.

“Its rise in popularity among cybercriminals likely stemmed from disruptions of other popular phishing services”, it noted.

Tycoon 2FA accounted for around 62pc of all phishing attempts blocked by Microsoft by mid-2025. Its platform enabled threat actors to impersonate trusted brands by copying sign-in pages for services including Microsoft’s own 365 and OneDrive, and Gmail. It also allowed criminals to access sensitive information even after passwords were reset.

Targets were lured through phishing emails containing attachments with svg, pdf, html or docx files, often embedded with QR codes or JavaScript. To evade detection, the platform used techniques such as anti-bot screening, browser fingerprinting and self-hosted Captchas.

The joint industry and law enforcement operation led to the disruption of 330 domains that formed the core infrastructure of the criminal service, including phishing pages and control panels.

However, Microsoft pointed out that Tycoon 2FA illustrates the “evolution of phishing kits in response to rising enterprise defences”. The platform shows how cybercriminals adapt lures, infrastructure and evasion techniques to stay ahead of detection.

Recently, Google and iVerify highlighted the existence of a hacking mechanism, with suspected US origins, now used by bad actors to infiltrate outdated iPhones.

Meanwhile, Amazon last month highlighted how commercial AI is being used by less technically savvy cybercriminals to scale cyberattacks on enterprises.

Don’t miss out on the knowledge you need to succeed. Sign up for the Daily Brief, Silicon Republic’s digest of need-to-know sci-tech news.