Cybersecurity Awareness Month: Two-Factor Authentication
Happy TUESDAY! I hope everyone enjoyed the holiday yesterday. Last week, the NeQter Labs team attended two events: the NDIA New England 4th Annual Cyber Event and the SENEDIA Tech Talk: Cybersecurity Maturity Model Process. Thanks to everyone who came out and spoke with us!
In light of Cybersecurity Awareness Month, the FBI recently warned companies and users that hackers have figured out a way to bypass certain types of two-factor authentication. A few of the ways in which hackers have been bypassing are through SIM swap fraud, MITM (man-in-the-middle) attacks, and session hijacking. Bottom line, be extremely cautious when entering credentials on banking sites, work sites containing any sensitive information, etc.
In other news, Google has announced that certain Android phones are vulnerable to a zero-day exploit that they thought they had patched two years ago. Google’s Project Zero said “there are indicators that the exploit is allegedly being used or sold by the NSO Group,” which has been criticized in the past for selling zero-day exploits. To my knowledge, Google released the update which fixed the vulnerability on October 8th.
That’s all for today! Thank you for tuning in to this week’s segment of “Mondays With Miranda!” Keep up to date with current news by following NeQter Labs on Twitter, Facebook, and LinkedIn. We love comments and questions, so drop me an email firstname.lastname@example.org. Enjoy your week!