Proposing Solutions for the SolarWinds Attackers’ MFA Bypass (Part 2)
In our previous article in this series, we highlighted a very serious threat to networks of all kinds: The hackers presumed to be behind the large-scale breach of SolarWinds’ Orion platform have also been linked to an attack that compromised a multi-factor authentication system. By gaining read access to the MFA server, it’s possible for a bad actor to generate false cookies and gain authenticated user privileges.
As it stands today, there’s a lack of adequate solutions for this type of attack, which pinpoints the weakest link in an MFA system to bypass what is otherwise a reliable authentication method. In this article, we’ll sketch out proposed solutions that can neutralize this serious threat to networks. ...read more!