Source |
Cisco |
Identifiant |
4287377 |
Date de publication |
2022-03-15 20:20:02 (vue: 2022-03-15 21:05:32) |
Titre |
Cyber Actors Bypassing Two-Factor Authentication Implementations |
Texte |
A recent FBI flash bulletin described how state-sponsored cyber actors were able to use the PrintNightmare vulnerability (CVE-2021-34527) in addition to bypassing Duo 2FA to compromise an unpatched Windows machine and gain administrative privileges. This scenario did NOT leverage or reveal a vulnerability in Duo. |
Envoyé |
Oui |
Condensat |
2021 2fa 34527 able actors addition administrative authentication bulletin bypassing compromise cve cyber described did duo factor fbi flash gain how implementations leverage machine not printnightmare privileges recent reveal scenario sponsored state two unpatched use vulnerability windows |
Tags |
Vulnerability
|
Stories |
|
Notes |
|
Move |
|