CISA-FBI alert details Russian cyber actor exploits on default multifactor authentication protocols

Cyber actors linked to the Russian government are exploiting default multifactor authentication protocols and a “known vulnerability,” CISA and the FBI said in a new alert that includes “observed tactics, techniques, and procedures, indicators of compromise, and mitigation recommendations.”

“The Federal Bureau of Investigation and Cybersecurity and Infrastructure Security Agency are releasing this joint Cybersecurity Advisory to warn organizations that Russian state-sponsored cyber actors have gained network access through exploitation of default MFA protocols and a known vulnerability,” according to...