Advertisement
TH
HIGH
Threat Intel
Chinese-Language PhaaS: Real-Time OTP Interception and Tokenization
Chinese-language PhaaS providers like Darcula are shifting to real-time OTP interception and digital wallet tokenization to bypass modern MFA controls.
Runtime Rebel Intel
4 min read·May 25, 2026
HIGH
Threat Intel
EvilTokens PhaaS: Bypassing MFA via OAuth Device Code Flow
The EvilTokens platform has compromised 340+ Microsoft 365 organizations by weaponizing OAuth Device Code Flows to bypass multi-factor authentication.
Runtime Rebel Intel
4 min read·May 19, 2026
TH
HIGH
Threat Intel
VENOM PhaaS: New Phishing Attacks Target Senior Executives' Microsoft Logins
Analysis of VENOM, a new PhaaS platform targeting C-suite executives with sophisticated phishing attacks to steal Microsoft login credentials across industries.
Runtime Rebel Intel
4 min read·Apr 10, 2026
TH
HIGH
Threat Intel
Starkiller Phishing-as-a-Service: Technical Analysis of Adversary-in-the-Middle Frameworks
An examination of the Starkiller phishing platform, which employs transparent reverse proxy techniques to relay authentication traffic and capture multi-factor authentication (MFA) tokens in real-time.
Runtime Rebel Intel
2 min read·Feb 23, 2026