ROADtools Misused in Cloud Attacks to Steal Tokens and Bypass MFA Controls

A well-known open-source security framework called ROADtools has been turned against the organizations it was originally built to protect. Once a legitimate red-teaming tool, attackers are now actively weaponizing it to steal authentication tokens, register rogue devices, and bypass multi-factor authentication (MFA) controls in Microsoft Azure environments. ROADtools is a Python-based toolkit designed to interact […] The post ROADtools Misused in Cloud Attacks to Steal Tokens and Bypass MFA Controls appeared first on Cyber Security News.