Last month, the US Federal Bureau of Investigation (FBI) warned private industry partners that sophisticated cyberattacks capable of bypassing multi-factor authentication (MFA) solutions are on the rise. The FBI stated that threat actors were increasingly “circumventing multi-factor authentication through common social engineering and technical attacks” and listed a number of examples of such campaigns.
The FBI highlighted SIM swapping, security flaws and tools like Muraen and NecroBrowser as common MFA bypassing techniques. However, the agency stressed that these attacks are still relatively rare and that “multi-factor authentication continues to be a strong and effective security measure to protect online accounts, as long as users take precautions to ensure they do not fall victim to these attacks.”
Read more: FBI warns about attacks that bypass multi-factor authentication (MFA)