Passwords are finally being left behind in favor of two-factor (2FA) and multifactor (MFA) authentication. Some vendors are promoting “unhackable” 5FA solutions. It’s all a lie. All authentication solutions can be hacked. Come learn at least 12 ways 2FA can be hacked, how 2FA really works behind the scenes, what the holes are, how to hack it and how you can defend against those attacks.Learning Objectives:1: Understand how 2FA really works behind the scenes.2: Learn how 2FA solutions are hacked.3: Learn how to defend against 2FA attacks.Pre-Requisites:Understanding of basic terms such as smartcard, USB key, password, PIN, etc. Everything else is explained.
Cisco upgraded three remote code execution (RCE) vulnerabilities impacting the web management interfaces to critical severity with a CVSS base score of 9.8 after initially rating them as high with a base score of 8.8 when the advisories were first published on May 15. Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network (EPN) Manager are network management tools used by administrators “for provisioning, monitoring, optimizing, and troubleshooting both wired and wireless devices.”
A US court has indicted ten members of a cyber crime gang, including five Russian nationals, that deployed a credential-stealing malware known as GozNym to steal banking logins and gain access to online bank accounts of more than 41,000 victims that included businesses and their financial institutions. The federal indictment noted that the cyber crime group used the GozNym malware to first steal online banking credentials from victims’ computers, used the stolen credentials to log in to online banking accounts, stole money from such accounts, and then laundered the funds using U.S. and foreign beneficiary bank accounts.
The Maritime and Port Authority of Singapore (MPA) has a bulwark against cyber attacks with its new Maritime Cybersecurity Operations Centre, launched officially yesterday. The centre, which has been operating since last November, aims to strengthen Singapore’s maritime security through early detection, monitoring, analysis and response to potential cyber attacks.
