Cybersecurity researchers have revealed a new attack method exploiting the cross-device sign-in feature of FIDO keys to bypass protections and facilitate account hacking. The attack involves phishing tactics that relay QR codes and trick users into authenticating malicious sessions, threatening enterprise account security. #PoisonSeed #FIDO2 #crossdevicelogin #phishingattack
Keypoints
- Threat actors misuse FIDO’s cross-device sign-in feature in sophisticated phishing attacks.
- The attack relays QR codes between phishing sites and legitimate login portals to hijack accounts.
- Phishing campaigns associated with PoisonSeed target CRM and email platforms to drain digital wallets.
- Secure protocols like FIDO2 are vulnerable when proximity checks like Bluetooth are not enforced.
- Organizations should combine FIDO2 with device verification and monitor for suspicious login activities.
Read More: https://thehackernews.com/2025/07/poisonseed-hackers-bypass-fido-keys.html