Europol-led Operation Dismantles Tycoon 2FA Phishing Toolkit

Europol-led law enforcement and security companies dismantled Tycoon 2FA, a phishing-as-a-service (PhaaS) toolkit used for adversary-in-the-middle (AitM) credential harvesting attacks. The subscription-based phishing kit first emerged in August 2023 and was linked to approximately 64,000 attacks. Tycoon 2FA was described by Europol as one of the largest phishing operations of its kind. The takedown involved a coalition of agencies and private sector partners. No specific technical vulnerabilities or CVE IDs were mentioned in the reported details.