{"id":193691,"date":"2026-03-05T11:00:00","date_gmt":"2026-03-05T16:00:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/03\/05\/microsoft-europol-disrupt-global-phishing-platform-tycoon-2fa\/"},"modified":"2026-03-07T10:20:23","modified_gmt":"2026-03-07T15:20:23","slug":"microsoft-europol-disrupt-global-phishing-platform-tycoon-2fa","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/03\/05\/microsoft-europol-disrupt-global-phishing-platform-tycoon-2fa\/","title":{"rendered":"Microsoft, Europol disrupt global phishing platform Tycoon 2FA"},"content":{"rendered":"<p><a href=\"https:\/\/www.cybersecuritydive.com\/news\/microsoft-europol-disrupt-phishing-tycoon-2fa\/813904\/\">Microsoft, Europol disrupt global phishing platform Tycoon 2FA<\/a><\/p>\n<p><a href=\"https:\/\/www.cybersecuritydive.com\/news\/microsoft-europol-disrupt-phishing-tycoon-2fa\/813904\/\">https:\/\/www.cybersecuritydive.com\/news\/microsoft-europol-disrupt-phishing-tycoon-2fa\/813904\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-03-05 11:00:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.cybersecuritydive.com\">www.cybersecuritydive.com<\/a><\/p>\n<p>Author: <a href=\"\"><\/a><\/p>\n<p> Using an unordered list, summarize the following article with between 4 and 8 key points. <\/p>\n<p>An international coalition led by Microsoft and Europol has taken down the operations of Tycoon 2FA, a notorious phishing-as-a-service platform that helped cyber criminals gain access to millions of email accounts across the globe.\u00a0<br \/>\nMicrosoft obtained a court order from the U.S. District Court from the Southern District of New York to seize 330 active domains used to back the core infrastructure of Tycoon 2FA.<br \/>\n\u201cTaking this infrastructure offline cuts off a major pipeline for account takeovers and helps protect people and organizations from follow-on attacks such a data theft, ransomware, business email compromise and financial fraud,\u201d Steve Masada, assistant general counsel at Microsoft\u2019s Digital Crimes Unit, said in a blog post published Wednesday.\u00a0<\/p>\n<p>Tycoon 2FA, which had been active since 2023, grew into one of the largest phishing operations in the world. The attacks impacted more than 96,000 phishing victims globally since 2023. Microsoft said more than 55,000 of its customers were affected.\u00a0<br \/>\nThe service operated as an adversary-in-the-middle phishing kit, harvesting usernames, passwords and session cookies from Gmail and Microsoft 365 accounts, according to a blog post from Proofpoint, which was part of the coalition.\u00a0<br \/>\nTycoon 2FA had a widespread impact on businesses, health care providers and universities. More than 100 members of Health-ISAC were impacted, compromising the account credentials of staff members at these organizations. Health-ISAC was listed as a co-plaintiff on the court order.<br \/>\n\u201cWe saw firsthand how medical facilities were hit hardest,\u201d Errol Weiss, chief security officer at Health-ISAC, told Cybersecurity Dive. \u201cThese attacks have tangible consequences, leading to diverted ambulances, disrupted hospital operations, and dangerous delays in patient care.\u201d<br \/>\nLaw enforcement agencies from the UK, Latvia, Poland, Spain and other parts of Europe participated in the operation, according to Europol.\u00a0<\/p>\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Microsoft, Europol disrupt global phishing platform Tycoon 2FA https:\/\/www.cybersecuritydive.com\/news\/microsoft-europol-disrupt-phishing-tycoon-2fa\/813904\/ Publish Date: 2026-03-05 11:00:00 Source Domain:&#8230;<\/p>\n","protected":false},"author":1,"featured_media":193692,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/imgproxy.divecdn.com\/qDe-4X_BkF6Yzy2B_-_0mh6Y8VCiU6yujkB4_juXkYA\/g:ce\/rs:fit:770:435\/Z3M6Ly9kaXZlc2l0ZS1zdG9yYWdlL2RpdmVpbWFnZS9HZXR0eUltYWdlcy0xMjAxMDIwOTc0LmpwZw==.webp","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[24,25],"class_list":["post-193691","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-cybersecurity","tag-phishing"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/193691"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=193691"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/193691\/revisions"}],"predecessor-version":[{"id":193693,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/193691\/revisions\/193693"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/193692"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=193691"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=193691"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=193691"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}