The Rise of One-Time Password Interception Bots
Krebs on Security
SEPTEMBER 29, 2021
agency — advertised a web-based bot designed to trick targets into giving up OTP tokens. But in so many instances, what sites request is basically two things you know (a password and a one-time code) to be submitted through the same channel (a web browser).