PoisonSeed Hackers Bypass FIDO Keys Using QR Phishing and Cross-Device Sign-In Abuse

Source: The Hacker News | Added:

Cybersecurity researchers have identified a new attack method that enables hackers to circumvent FIDO key protections by tricking users into approving authentication requests from fake login portals. This phishing campaign, attributed to the threat actor PoisonSeed, highlights vulnerabilities in user verification processes.

---

Impact: Not specified

In the Wild: Yes

Age: Newly disclosed

Remediation: Not specified

Read Full Original Article →