Hackers overcoming multi-factor authentication

Conventionally, one of the most important things you can do to protect yourself from hackers is use multi-factor authentication (MFA). It’s an added step in traditional cybersecurity – helping to mitigate the damage from lost, phished, stolen or weak passwords. But recently there's been a surge in malicious software aimed at defeating MFA. For hackers who want to get around multifactor authentication, one option is to use an adversary-in-the-middle (AiTM) attack. This combines a phishing attack with a proxy server, allowing attackers to steal a user's password and authentication session cookie. A recent Microsoft report showed that over 10,000 organisations have already been a target.