CISA has confirmed that hackers have successfully breached user account that uses proper multi-factor authentication (MFA).
Threat actors have been using legitimate tools to compromise Cloud-based assets. The US Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning to alert remote workers using cloud accounts about a possible security breach.
Cloud-based infrastructure is one of the most important and trending concepts in today’s technical world. Most of the companies are using Cloud-based infrastructure to store their data and various other sensitive information which include user data.
By exploiting and bypassing the MFA, hackers can gain access to all the sensitive information that an organization stores over the Cloud. Gaining access to this data can allow hackers to cause menace by launching various attacks on different users and organizations.
On Wednesday, the US cybersecurity agency revealed in an official statement that there had been multiple ‘successful cyberattacks against various organizations’ cloud services. Hackers are using Brute-force, phishing, and “pass-the-cookie” attack for gaining access to cloud accounts.
Attackers use spoofed versions of file hosting services or other legitimate vendors to obtain login information and hijacking cloud accounts to phish other users in the organization. On the other hand, the agency noted that some attackers are modifying forwarding and keyword search rules.
NPAV recommends users to use trusted Cloud service providers that can ensure the complete safety of your data. Install NPAV on your devices to keep them safe and secure from all kinds of cyberattacks. Use NPAV and join us on a mission to secure the cyber world.