Cookie-Bite attack PoC uses Chrome extension to steal session tokens
From BleepingComputer to All on Tue Apr 22 11:45:02 2025
A proof-of-concept attack called "Cookie-Bite" uses a browser extension to steal browser session cookies from Azure Entra ID to bypass multi-factor authentication (MFA) protections and maintain access to cloud services like Microsoft 365, Outlook, and Teams. [...]