Threat Actors Are Bypassing MFA and Other Major Cybersecurity Developments You Should Know
TikTok makes sweeping changes to protect teens, Ring starts rolling out E2E, Neuberger officially tapped by Biden transition team, Pentagon halts deployment of $2B cybersecurity project, much more
Consider sharing Metacurity with your friends and colleagues to help them stay on top of the fast-changing cybersecurity sectors. Thank you.
DHS’s Cybersecurity and Infrastructure Security Agency (CISA) said that threat actors bypassed multi-factor authentication (MFA) protocols to compromise cloud service accounts.
CISA thinks they could defeat MFA as part of a 'pass-the-cookie' attack in which attackers hijack an already authenticated session using stolen session cookies to log into online services or web apps. (Sergiu Gatlan / Bleeping Computer)
Related: Reddit - cybersecurity, Bleeping Computer, US-CERT, Tripwire, The State of Security, Infosecurity Magazine, Security Affairs, Security Magazine, SiliconANGLE
TikTok announced broad and sweeping changes to its privacy settings for teenage users under the age of 18, with the youngest users between the age of 13 and 15 having their default privacy setting on their accounts changed to private.
Unlike other social media, TikTok is dispro…
Keep reading with a 7-day free trial
Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.