Researchers discovered a novel phishing attack that serves the victim a QR code as part of supposed multifactor authentication (MFA), in order to get around FIDO-based protections.
First seen on darkreading.com
Jump to article: www.darkreading.com/remote-workforce/poisonseed-attacker-fido-keys
