SolarWinds Attackers' MFA Bypass: Proposed solutions
Proposing Solutions for the SolarWinds Attackers' MFA Bypasses Part 2
The hackers presumed to be behind the large-scale breach of SolarWinds' Orion platform have also been linked to an attack that compromised a multi-factor authentication system.
By gaining read access to the MFA server, it's possible for a bad actor to generate false cookies and gain authenticated user privileges. As it stands today, there's a lack of adequate solutions for this type of attack, which pinpoints the weakest link in an MFA system to bypass what is otherwise a reliable authentication method.
Read this article for proposed solutions that can neutralize this serious threat to networks.