Russia’s Storm-2372 Targets Organizations with MFA Bypass Using Device Code Phishing Techniques
Storm-2372, a Russian state-backed APT group, utilizes device code phishing to circumvent Multi-Factor Authentication (MFA), targeting sectors including government, technology, finance, defense, and healthcare. Recent research by cybersecurity analysts at SOCRadar has uncovered an evolving tactic employed by the notorious Russian advanced persistent threat group, Storm-2372. This group has demonstrated…