- Starkiller is a new phishing service that dynamically loads real login pages and acts as a relay between the victim and the legitimate site. - It captures MFA credentials in real time, effectively neutralizing multi-factor authentication protections.