Tycoon2FA hijacks Microsoft 365 accounts via device-code phishing

bleepingcomputer.com·May 17, 2026

The Tycoon2FA phishing kit has been updated to include device-code phishing attacks and exploits Trustifi click-tracking URLs to compromise Microsoft 365 accounts.

For a professional focused on cybersecurity and threat intelligence, a key learning is to prioritize enhancing defenses against 2FA phishing attacks, especially those exploiting click-tracking URLs like Trustifi. Consider deploying advanced threat detection systems that monitor for unusual URL behaviors and potentially integrate phishing-resistant multi-factor authentication methods to safeguard Microsoft 365 accounts.

Want more content like this?

twixb tracks your favorite blogs and social media, filters by keywords, and delivers personalized key learnings — straight to your inbox.

Create Your Own →Explore Newsfeeds

More from Cybersecurity News

Recent stories curated alongside this one.

Browse all Cybersecurity News →

Tycoon2FA hijacks Microsoft 365 accounts via device-code phishing

Want more content like this?

More from Cybersecurity News

Microsoft shares mitigation for YellowKey Windows zero-day

Risky Business #838 -- GitHub investigates possible breach

Risky Bulletin: Microsoft takes down crime SaaS used by ransomware gangs

Verizon DBIR 2026: Vulnerability Exploitation Overtakes Credential Theft as Top Breach Vector

Max-severity flaw in ChromaDB for AI apps allows server hijacking