Cybercriminals are using AitM techniques to compromise accounts of company executives. How do they do this, and how to protect against it?