DataSans
MFA Security Awareness Training

Innovative Way to Bypass MFA Using Microsoft WebView2 Is Familiar Nevertheless

An interesting way to bypass multi-factor authentication (MFA) was recently announced by Bleeping Computer. This particular attack method requires a potential victim to be tricked into downloading a malicious executable (not so hard unfortunately), and the resulting rogue code then uses Microsoft Edge’s WebView2 control to essential create a rogue web page which can mimic any other web page, except with new malicious coding inserted.

originally published onhttps://blog.knowbe4.com/innovative-way-to-bypass-mfa-using-microsoft-webview2-is-familiar-nevertheless

Related posts

KnowBe4 Named a 2021 Gartner Peer Insights™ Customers’ Choice for Security Awareness Computer-Based Training

administrator

Having an Efficient Security Awareness Training Program

administrator

Dark Web Service Sells Access to Compromised Accounts and Browser Sessions

administrator