MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
attacks
Search

New attack tactics look to bypass MFA and target security blindspots

Tuesday September 23, 2025. 03:56 PM , from BetaNews
A new report from AI-powered managed extended detection and response company Ontinue shows a sharp rise in MFA-bypassing identity attacks in the first half of the year. These attacks are using token replay abuse with roughly 20 percent of live incidents involving adversaries reusing stolen refresh tokens to bypass MFA, even after password resets. The findings also reveal that while ransomware remains one of the most disruptive threats, adversaries are increasingly focused on identity-based attacks in the cloud, persistence in Azure environments, and even ‘back to basics. tactics like USB-delivered malware. Over 70 percent of attachments found bypassing secure email… [Continue Reading]
Read more at BetaNews
https://betanews.com/2025/09/23/new-attack-tactics-look-to-bypass-mfa-and-target-security-blindspots

Related News

attacks Jimmy Kimmel's comeback reveals cracks in Trump's authoritarian tactics BoingBoingSep 24
mfa Data security spending at record levels but costly breaches continue BetaNewsSep 23
bypass Security updates for Tuesday LWN.netSep 23
tactics GitHub moves to tighten npm security amid phishing, malware plague TheRegisterSep 23
attack Cops cuff another teen over alleged Scattered Spider attack that broke Vegas casinos TheRegisterSep 22
adversaries Security updates for Monday LWN.netSep 22
even Sumo Logic brings agentic AI to the enterprise security stack BetaNewsSep 22
are NPM attacks and the security of software supply chains InfoWorldSep 22
look FOMO? Brit banking biz rolls out AI tools, talks up security TheRegisterSep 22
target Ransomware attack linked to museum break-in and theft of golden exhibits TheRegisterSep 22
security AI Tools Give Dangerous Powers to Cyberattackers, Security Researchers Warn SlashdotSep 21
blindspots 1Password Review (2025): Gold Standard Security Wired: Tech.Sep 20
attacks Turns out Hayabusa2's next asteroid target isn't much bigger than the probe itself TheRegisterSep 19
mfa No back-to-school turnaround for Target, beset by more boycotts BoingBoingSep 19
bypass Security updates for Friday LWN.netSep 19
tactics Internal chaos after a cyberattack causes more damage than the attack itself BetaNewsSep 19
attack Cash is more important than national security in Trumpland BoingBoingSep 19
adversaries Trump Tower security rejects Good Liars' Epstein prank display BoingBoingSep 18
even Data security spending at record levels but costly breaches continue BetaNewsSep 18
are Political Influencers Are Ramping Up Security—and Posting Through It Wired: Tech.Sep 18
News copyright owned by their original publishers | Copyright © 2004 - 2025 Zicos / 440Network
Current Date
Sep, Wed 24 - 07:58 CEST