#Microsoft's Multi-Factor Authentication (MFA) implementation, allowing attackers to bypass it
Source: oasis.security/resources/blog/…
The bypass was simple: it took around an hour to execute, required no user interaction and did not generate any notification or provide the account holder with any indication of trouble.
#news #software #cybersecurity #cloud #security #hacker #fail #mfa
Oasis Security Research Team Discovers Microsoft Azure MFA Bypass
Critical vulnerability could have allowed malicious actors to gain unauthorized access to users’ Microsoft accounts.Tal Hason (Oasis Security)
like this
𝕕𝕚𝕒𝕟𝕖𝕒 🏳️⚧️🦋
in reply to anonymiss • • •Kenny Chaffin
in reply to anonymiss • • •pascal macaigne
in reply to anonymiss • • •To let the good guys spy on the bad guys?