all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Multi-Factor Authentication Bypass Led to Box Account Takeover

Add to bookmarks
Jan. 18, 2022, 7:41 p.m. | Ionut Arghire

SecurityWeek RSS Feed www.securityweek.com

A vulnerability in Box's implementation of multi-factor authentication (MFA) allowed attackers to take over victim’s accounts without having access to the victim’s phone, according to new research from Varonis.


read more



account takeover application security audits authentication box bypass cloud security compliance cyberwarfare data protection email security endpoint security factor fraud & identity theft identity & access incident response malware multi-factor multi-factor authentication network security news & industry phishing risk management takeover virus & malware vulnerabilities

Visit resource

More from www.securityweek.com / SecurityWeek RSS Feed

Predictive Security Startup BforeAI Raises $15 Million 12 hours ago | www.securityweek.com
artificial intelligence attack bfore.ai funding +15
Palo Alto Networks Shares Remediation Advice for Hacked Firewalls 15 hours ago | www.securityweek.com
advice alto cve cve-2024 +12
Autodesk Drive Abused in Phishing Attacks 16 hours ago | www.securityweek.com
accounts attacks autodesk campaign +10
FTC Sending $5.6 Million in Refunds to Ring Customers Over Security Failures 16 hours ago | www.securityweek.com
customers data protection failures ftc +5
Vulnerabilities Expose Brocade SAN Appliances, Switches to Hacking 16 hours ago | www.securityweek.com
application brocade expose hacking +7
Endpoint Security Firm ThreatLocker Raises $115 Million in Series D Funding 18 hours ago | www.securityweek.com
cybersecurity funding endpoint endpoint security funding +8
IBM Acquiring HashiCorp for $6.4 Billion 19 hours ago | www.securityweek.com
acquiring acquisition capabilities funding +8
Cisco Systems Joins Microsoft, IBM in Vatican Pledge to Ensure Ethical Use and Development of … 1 day, 3 hours ago | www.securityweek.com
ai artificial intelligence called cisco +13
Cisco Raises Alarm for ‘ArcaneDoor’ Zero-Days Hitting ASA Firewall Platforms 1 day, 11 hours ago | www.securityweek.com
alarm arcanedoor asa china apt +21

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Regional Leader, Cyber Crisis Communications

@ Google | United Kingdom
View on infosec-jobs.com

Regional Intelligence Manager, Compliance, Safety and Risk Management

@ Google | London, UK
View on infosec-jobs.com

Senior Analyst, Endpoint Security

@ Scotiabank | Toronto, ON, CA, M1K5L1
View on infosec-jobs.com

Software Engineer, Security/Privacy, Google Cloud

@ Google | Bengaluru, Karnataka, India
View on infosec-jobs.com

Senior Security Engineer

@ Coinbase | Remote - USA
View on infosec-jobs.com
View more jobs