Identity-Based Attacks Target Authentication Systems and Credentials

Identity-Based Attacks Target Authentication Systems and Credentials

First seen 29 May 2026, 21:44 UTC DuoFeeds.Feedburnerlearn.microsoft.comBleepingcomputerIverify+11 85% similarity 69.5

Article Content

Browse articles
ThreatCluster

Recent identity-based attacks have exploited vulnerabilities in authentication systems, targeting credentials and identity infrastructure. Notable incidents include the compromise of over 18,000 routers by APT28 to steal OAuth tokens, a breach of France's National Agency for Secure Documents exposing citizen data, and phishing attacks using legitimate vendor notifications. Attackers bypassed multi-factor authentication (MFA) without breaking cryptography, indicating a shift in focus towards the identity attack surface. The incidents affected numerous organizations and individuals, with the router compromise impacting over 200 organizations and 5,000 consumer devices. These attacks highlight the need for enhanced security measures around authentication processes and trust relationships. Current defenses must adapt to prevent unauthorized access from authenticated sessions.

Key Points: • Identity-based attacks are increasingly targeting authentication systems rather than application code. • APT28 compromised over 18,000 routers to harvest OAuth tokens, affecting 200 organizations. • Recent breaches exposed sensitive data and demonstrated the limitations of current MFA implementations.

ThreatCluster AI

Timeline

2026-04-15
Breach of France's National Agency for Secure Documents
ANTS disclosed a breach exposing login credentials and personal data of French citizens.
Duo
Recent
APT28 router compromise reported
APT28 compromised over 18,000 routers to intercept OAuth tokens for Microsoft Outlook, impacting many organizations.
Duo
Recent
Phishing through legitimate vendor notifications
Attackers used genuine Apple security notifications to deliver phishing lures that passed email authentication checks.
Duo

Community

Browse all →