Hackers Outsmart MFA, Pushing for Stronger Defenses

The FBI cautions that fraudsters are bypassing multifactor authentication (MFA) by obtaining “Remember Me” session cookies, granting access to accounts that do not require passwords or codes. To protect themselves, users should erase their cookies, avoid strange URLs, and keep track of their login history. While multi-factor authentication (MFA) remains critical for security, other technologies such as passkeys, which link credentials to device security, are gaining popularity as safer alternatives.

Editor’s Note: This demonstrates the alarming sophistication of cyber attacks nowadays. Even with passwords and additional security measures such as multi-factor authentication, hackers find innovative ways to enter accounts, showing how susceptible our digital systems can be. As technology evolves, fraudsters’ strategies evolve, making every new precaution a possible target. While developing tools such as passkeys show potential, they will inevitably lead to more sophisticated breaches. The conflict between protection and exploitation is far from done, necessitating ongoing vigilance from technology developers and consumers. [See also: Cyberattack on Internet Archive Threatens Digital History, Philippines’ National ID Push: Are Data Security Risks Being Overlooked?, Data Breach Underscores Risks of Digitalization and Identity Theft]

Read Original Article