Metacurity

Share this post

Threat Actors Are Bypassing MFA and Other Major Cybersecurity Developments You Should Know

metacurity.substack.com

Threat Actors Are Bypassing MFA and Other Major Cybersecurity Developments You Should Know

TikTok makes sweeping changes to protect teens, Ring starts rolling out E2E, Neuberger officially tapped by Biden transition team, Pentagon halts deployment of $2B cybersecurity project, much more

Cynthia Brumfield
Jan 14, 2021
∙ Paid
1
Share
Share this post

Threat Actors Are Bypassing MFA and Other Major Cybersecurity Developments You Should Know

metacurity.substack.com

Consider sharing Metacurity with your friends and colleagues to help them stay on top of the fast-changing cybersecurity sectors. Thank you.

Share

DHS’s Cybersecurity and Infrastructure Security Agency (CISA) said that threat actors bypassed multi-factor authentication (MFA) protocols to compromise cloud service accounts.

CISA thinks they could defeat MFA as part of a 'pass-the-cookie' attack in which attackers hijack an already authenticated session using stolen session cookies to log into online services or web apps. (Sergiu Gatlan / Bleeping Computer)

Related: Reddit - cybersecurity, Bleeping Computer, US-CERT, Tripwire, The State of Security, Infosecurity Magazine, Security Affairs, Security Magazine, SiliconANGLE

TikTok announced broad and sweeping changes to its privacy settings for teenage users under the age of 18, with the youngest users between the age of 13 and 15 having their default privacy setting on their accounts changed to private. 

Unlike other social media, TikTok is dispro…

Keep reading with a 7-day free trial

Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.

Already a paid subscriber? Sign in
Previous
Next
© 2023 DCT Associates
Privacy ∙ Terms ∙ Collection notice
Start WritingGet the app
Substack is the home for great writing