Russian State-Sponsored Actors Combine Exploits to MFA Protocols and a Known Vulnerability

While multifactor authentication (MFA) is one of the best cybersecurity measures to protect against unauthorized account and network access, it is not without its vulnerabilities. CISA and the FBI published a new activity alert highlighting how Russian state-sponsored actors have exploited MFA protocols and the mitigations to protect against it. Alert AA22-074A emphasizes the need to review cybersecurity product/control configurations before and after implementation and the importance of patching or otherwise mitigating known vulnerabilities in a timely fashion.