Tycoon2FA dismantled: How TrendAI research supported the Europol-led takedown

Have you heard about Tycoon2FA?

Linked to more than 96,000 victims globally, this phishing-as-a-service platform enabled attackers to bypass multi-factor authentication (MFA) using adversary-in-the-middle (AiTM) proxying, allowing them to intercept login sessions and capture valid credentials in real time.

Tycoon2FA has recently been dismantled, and our threat researchers at TrendAI™, a business unit of Trend Micro, played a key role in the global disruption of the platform. Here is how and what you should know.

View Full Article

Related Articles

• The Attack Surface Your Security Team Isn't Governing Yet
• Cyber Security Bill aims to strengthen national defences
• Securing the AI era of application development
• Threat State: TrendAI Threat Intelligence Briefing
• When it comes to email security, are you only looking at one side of the coin?

Popular Articles

Collaboration will support efforts to identify and remediate software vulnerabilities using advanced...

Read More >

TrendAI™ Joins Anthropic's Project Glasswing

CrowdStrike is launching a new capability designed to secure the autonomous enterprise through ...

Read More >

CrowdStrike Secures AI Agents with Real-Time Risk Tech

InfoComm 2026 was full of AI. That was expected. The more interesting question was whether any of i...

Read More >

The Biggest Takeaways from InfoComm 2026

Jamie Dimon gives voice to a wider sense of executive frustration. In audio that surfaced in e...

Read More >

Is Hybrid Work Holding Firm Over In-Office for Finance?