
Evilginx is a powerful adversary-in-the-middle (AiTM) attack that lets threat actors bypass MFA and hijack user identities. With just a single command, attackers can clone legitimate login pages, steal session tokens, and gain full access—no passwords or MFA codes required. But with Huntress Managed ITDR (Identity Threat Detection and Response), we fight back. Our SOC swiftly detects and shuts down these attacks in Microsoft 365, revoking stolen sessions and locking out threat actors before they can cause damage.
