Breach in a Blink: How Attackers Bypass MFA—and How You Can Stop Them

Breach in a Blink: How Attackers Bypass MFA—and How You Can Stop Them

Live demo to see how attackers bypass MFA with AiTM phishing—and how Microsoft tools can detect and block the threat.

By Digital Space

Date and time

Thu, 26 Jun 2025 07:00 - 09:00 PDT

Location

Online

About this event

  • Event lasts 2 hours

Live demo. Real threat. Actionable defence. Don’t miss it.

MFA is no longer a silver bullet. In this technical session, we’ll demonstrate a live adversary-in-the-middle (AiTM) phishing attack using Evilginx to bypass MFA and hijack a Microsoft 365 session. You’ll see how attackers gain persistent access—even adding their own MFA method. Then we’ll show how Microsoft security tools like Entra ID P1/P2 and Defender for Office 365 can detect and block this threat with risk-based policies, phishing protection, and attack simulations.

Whether you're a security architect, IT lead, or identity admin, you’ll leave with practical insights to harden your defences against evolving identity-based attacks.

We look forward to seeing you on the event!

Digital Space Events Team

Frequently asked questions

Who should attend this webinar?

This session is ideal for IT security professionals, identity and access management teams, Microsoft 365 admins, and anyone responsible for protecting organisational accounts and data from modern phishing threats.

Will the session include a live attack demonstration?

Yes. We’ll walk through a live reverse proxy phishing attack using Evilginx to show exactly how MFA can be bypassed and persistent access gained—followed by how to detect and block this with Microsoft security tools.

Do I need deep technical knowledge to follow along?

Not necessarily. While we’ll dive into technical concepts, the session is designed to be accessible to both technical and strategic decision-makers with clear takeaways for all.

Tags

Organised by

Digital Space