In recent years, phishing attacks targeting financial institutions and other organizations have become more sophisticated, and a method called "real-time phishing" in particular has become a serious threat. This type of attack can even invalidate one-time passwords (OTPs), which have traditionally been considered effective in preventing phishing attacks.
Further display The threat of real-time phishing that cannot be prevented by one-time passwords - The true nature of phishing resistance using passkeys