Cisco Duo provider breached, SMS MFA logs compromised

Hackers have managed to compromise a telephony provider for Duo, the Cisco-owned company providing secure access solutions, and steal MFA (multi-factor authentication) SMS message logs of Duo customers. About the attack The unnamed provider – one of two that Duo uses – was breached via compromised/phished employee credentials, which allowed the attackers to gain access to the company’s internal systems on April 1, 2024. “The threat actor downloaded message logs for SMS messages that were … More →

The post …

access attack attackers authentication breached cisco cisco duo compromise compromised credentials customers don't miss duo duo security employee factor hackers hot stuff logs managed message mfa msp multi-factor multi-factor authentication phished secure access sms social engineering solutions steal telephony third party compromise