Hackers have learned to crack two-factor authentication. Worth the worry?
26.12.2019 0 Comments
This happened for the first time.
APT20 Chinese hackers have used a new method to bypass two-factor authentication in their latest attacks. According to Fox-IT experts who discovered this, bypassing two-factor authentication using new technology allowed cybercriminals to carry out a number of successful attacks.
Fox-IT researchers have studied APT20 hacker activity over the past few months. It turned out that hackers carried out a series of attacks on government organizations, including health and financial. Attacks were carried out on organizations in the USA, Brazil and European countries.
Two-factor authentication was hacked using the previously stolen RSA SecurID software token. Attackers used it to generate keys to the security system. Fox-IT experts noted that the token itself is useless without access to special equipment for verification. However, hackers managed to crack the software token analysis mechanism and circumvent the check.
According to experts, hackers have been using the new method for a relatively long time. It was possible to detect their activity only now due to the fact that a new type of attack does not require the installation of malware on the victim's computer. Thanks to this, cybercriminals acted almost imperceptibly and carefully noticed all the traces behind them.
Experts emphasize that ordinary users do not have to worry about the emergence of a way to crack two-factor authentication. Currently, hackers can only use it to attack organizations' servers.
Put 5 stars at the bottom of the article if you like this topic. Follow us on VK, Instagram, Facebook, Twitter, Viber.