![]() Once inside, they were able to set a foothold within the security perimeter. After that, they took advantage of Duo's default settings that allowed them to self-enroll a new device for MFA, complete the authentication requirements, and obtain access to the victim's network. #Cisco duo app cracked#The hackers cracked the inactive account by guessing the password through brute force methods. Is MFA Still a Viable Security Measure?Īccording to the alert issued by the Federal Bureau of Investigation (FBI) and Cybersecurity and Infrastructure Security Agency (CISA), the cyber actors took advantage of a misconfigured account set to default MFA protocols to access the victim's network.What Happens When Hackers Get Through Your MFA?.To do that, we'll dive into the following: In this article, we'll help you understand how the attack happened and what you could do differently to prevent a similar outcome from happening to you. So how did that happen? And, how do you keep your business from experiencing the same fate?Īt ITS, we've helped hundreds of businesses bolster their cybersecurity efforts. They then leveraged a known vulnerability to access and steal documents from the victim's cloud and email accounts. There, it was stated that foreign hackers used Cisco's Duo MFA and exploited its default configurations to get access into the network. On March 15, 2022, the US government released a flash bulletin detailing the incident. Cyber actors exploited the security feature to gain entry into their network. That's a hard lesson one NGO learned after hackers turned their MFA against them. Multi-Factor Authentication (MFA) is one of the most effective ways to protect your network - but only if you do it properly. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |