MFA Failure Enables Infostealer Breach At 50 Enterprises
Threat actor “Zestix” was able to breach around 50 firms using infostealers because they lacked multi-factor authentication
Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.
Search across headline titles and summaries.
Weekly headline count for the current query.
Threat actor “Zestix” was able to breach around 50 firms using infostealers because they lacked multi-factor authentication
Microsoft confirmed an outage of its multi-factor authentication system impacting access to Microsoft 365, causing login failures and service disruption
The multi-cloud data warehousing platform said it will completely phase out single factor authentication with passwords by November 2025
Google wants to ensure a smooth transition towards required MFA across all Google Cloud accounts with a phased rollout running throughout 2025
FIDO Alliance’s third Online Authentication Barometer showed that AI-powered phishing is slowly prompting users to switch passwords for multi-factor authentication methods
Move is designed to mitigate risk of account takeover
Threat actors evolve to multi-factor authentication
The guidelines describe methods threat actors use to steal MFA credentials and how to defend against them
A large-scale phishing campaign stole passwords, hijacked a user’s sign-in session and skipped the authentication process even if MFA was enabled
Code hosting platform to make 2FA mandatory for all code contributors by the end of 2023
Alert explains how misconfigured authentication allowed hackers in