SecBoard
Zurück zur Übersicht
ManagerRed-TeamerAD & IdentityNetwork

Authentication Downgrade Attacks: Deep Dive into MFA Bypass

IOActive·
Originalartikel lesen bei IOActive

Introduction Phishing-resistant multi-factor authentication (MFA), particularly FIDO2/WebAuthn, has become the industry standard for protecting high-value credentials. Technologies such as YubiKeys and Windows Hello for Business rely on strong cryptographic binding to specific domains, neutralizing...

MITRE ATT&CK Kill Chain (19 Techniken)

Reconnaissance
T1589.001

Credentials

T1590.005

IP Addresses

T1592.001

Hardware

Resource Development
T1583.001

Domains

T1583.003

Virtual Private Server

T1583.004

Server

T1583.007

Serverless

T1584.001

Domains

T1584.003

Virtual Private Server

T1584.004

Server

T1584.007

Serverless

T1587.004

Exploits

T1588.005

Exploits

Initial Access
T1566

Phishing

Execution
T1059.007

JavaScript

Persistence
T1556.006

Multi-Factor Authentication

Defense Evasion
T1562.010

Downgrade Attack

Credential Access
T1557

Adversary-in-the-Middle

Command & Control
T1090

Proxy

Themen
INSIGHTSRESEARCH
Vollständigen Artikel lesen bei IOActive

Verwandte Artikel

Webinar: Fixing the gaps in network incident response

BleepingComputer·vor 33 Minuten

Microsoft Patches 137 Vulnerabilities

SecurityWeek·vor etwa 2 Stunden

Exaforce Raises $125 Million for Agentic SOC Platform

SecurityWeek·vor etwa 3 Stunden

Škoda warns of customer data breach after online shop hack

BleepingComputer·vor etwa 3 Stunden

Adobe Patches 52 Vulnerabilities in 10 Products

SecurityWeek·vor etwa 4 Stunden