Microsoft MFA AuthQuake Flaw Enabled Unlimited Brute-Force Attempts Without Alerts

December 12, 2024

Cybersecurity researchers have flagged a “critical” security vulnerability in Microsoft’s multi-factor authentication (MFA) implementation that allows an attacker to trivially sidestep the protection and gain unauthorized access to a victim’s account.
“The bypass was simple: it took around an hour to execute, required no user interaction and did not generate any notification or provide the

About The Author

See author's posts

Post Views: 1

Categories

Leave a Reply Cancel reply

Related Stories

CyberheistNews Vol 14 #50 Cruel Year-End Twist: When Fake Firing Is A Real Phishing Attack

Phishing Attacks Are Now Leveraging Google Ads to Hijack Employee Payments

Fake Recruiters Distribute Banking Trojan via Malicious Apps in Phishing Scam

AF themes

You may have missed

CyberheistNews Vol 14 #50 Cruel Year-End Twist: When Fake Firing Is A Real Phishing Attack

Fake Recruiters Distribute Banking Trojan via Malicious Apps in Phishing Scam

Phishing Attacks Are Now Leveraging Google Ads to Hijack Employee Payments

Cleo File Transfer Vulnerability Under Exploitation – Patch Pending, Mitigation Urged

About AF themes

Recent Posts

Connect with Us

About The Author

Leave a Reply Cancel reply

Related Stories

CyberheistNews Vol 14 #50 Cruel Year-End Twist: When Fake Firing Is A Real Phishing Attack

Phishing Attacks Are Now Leveraging Google Ads to Hijack Employee Payments

Fake Recruiters Distribute Banking Trojan via Malicious Apps in Phishing Scam

You may have missed

CyberheistNews Vol 14 #50 Cruel Year-End Twist: When Fake Firing Is A Real Phishing Attack

Fake Recruiters Distribute Banking Trojan via Malicious Apps in Phishing Scam

Phishing Attacks Are Now Leveraging Google Ads to Hijack Employee Payments

Cleo File Transfer Vulnerability Under Exploitation – Patch Pending, Mitigation Urged