BTC $71,807
2026 Bull Run Is Building Start trading with 5% OFF all fees
Sign Up Now
BTC $71,807
Bull Run 2026 | 5% Off Fees Open your Binance account today
Sign Up

Starkiller Phishing Kit Bypasses MFA via Live Proxies

Emerging phishing kits like Starkiller bypass MFA; service platforms lower skill barriers for sophisticated credential theft.

  • A new phishing kit called Starkiller uses live proxying of legitimate login pages to bypass multi-factor authentication (MFA) effectively.
  • Separate campaigns are evolving to target Microsoft 365 logins via OAuth device codes and financial institutions with sophisticated evasion chains.
  • These tools are lowering the skill barrier for cybercriminals, offering advanced capabilities in user-friendly, SaaS-style platforms.

A new, highly effective phishing tool has emerged, allowing cybercriminals to reliably bypass multi-factor authentication protections used by millions. According to researchers at Abnormal, the Starkiller platform, developed by a group called Jinkusu, operates by acting as a real-time reverse proxy between a victim and a legitimate website, serving a perfect, live copy of the login page from inside a Docker container. This method captures every keystroke and session token, making traditional security fingerprinting and blocklists ineffective.

- Advertisement -

Consequently, this technique eliminates the need for attackers to manually update their fake pages, as they always mirror the current live site. Meanwhile, the threat landscape continues to evolve with other sophisticated methods, including one campaign that compromises Microsoft 365 accounts by tricking users into entering an attacker-supplied device code on Microsoft’s own domain, granting the attacker persistent access.

Separately, financial institutions are facing a multi-stage attack that uses spoofed domains to trigger a fraudulent Cloudflare CAPTCHA page before redirecting to credential harvesting sites, as detailed by BlueVoyant. These campaigns employ advanced evasion chains with referrer validation and code obfuscation to hinder automated security tools. The rise of kits like Starkiller and the evolving 1Phish platform shows a trend toward criminal “as-a-service” offerings that centralize attack management and lower the technical barrier to entry for fraudsters.

✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.

Previous Articles:

- Advertisement -
Ad
Altseason Is Loading. Don't watch from the sidelines.
SOL $90.51
DOGE $0.0963
LINK $9.02
SUI $1.00
5% off fees when you sign up
Start Trading
Ad
Pay Less on Every Trade. For Life.
$10K/mo volume Save $60/yr
$50K/mo volume Save $300/yr
$100K/mo volume Save $600/yr
5% off all trading fees when you sign up
Claim Your Discount

Latest News

China-linked hackers target Indian taxpayers via tax phishing

A suspected China-nexus cyber campaign named Operation DragonReturn is targeting Indian taxpayers and financial...

Alphabet Launches Two New AI Models, Eyes Stock Boost

Alphabet launches two new AI models, Nano Banana 2 Lite and Gemini Omni Flash,...

Nvidia’s Kyber AI rack delayed to 2028: report

NVIDIA's next-generation Kyber server rack, designed for Rubin Ultra chips, is delayed to 2028...

TrojPix Air-Gap Attack Uses Monitor Cables

Researchers at Shandong University have demonstrated a new covert data exfiltration technique called TrojPix.The...

Bitcoin Reclaims $63k as Crypto Market Sees July Reversal

Bitcoin (BTC) reclaimed $63,000 in early July 2026, signaling a market reversal after a...

Must Read

Top 8 Books Every Beginner Should Read About Cryptocurrency

Cryptocurrency and blockchain technology are filled with technical terms that beginners find challenging to understand. One of the best ways to learn about cryptocurrency...
Ad
Altseason Is Loading. These 4 coins are trending right now.
SOL $92.12
DOGE $0.0950
LINK $9.02
SUI $1.02
5% off spot fees when you sign up
Start Trading