4th Platform logo white
Image of social engineering

4 Ways Cybercriminals use Social Engineering to infiltrate MFA

Multi-Factor Authentication (MFA) is commonly used to protect your information online. However, MFA is not impenetrable

If a password is compromised, hackers can deploy several tactics to get around any MFA protection.

The information in this blog has been sourced using The Hackers News. You can read the full story here

Adversary-in-the-middle (AITM) attacks

An AITM attack involves “deceiving users into believing they’re logging into a genuine network, application, or website.”

Through this hack, people can unwittingly give information to Cybercriminals.

An example of this is a spear-phishing email that arrives in an employee’s inbox.

MFA prompt bombing

This attack involves push notifications in modern authentication apps. After hackers access a password, attackers try to use the password to trigger the MFA prompt for the compromised account.

If the user inputs their details into the MFA prompt, the hackers will gain full access to the account.

Service desk attacks

Hackers access helpdesks by “feigning password forgetfulness and gaining access through phone calls.”

If the proper verification checks aren’t in place, hackers may be granted access to an organisational environment.

Another way is to “exploit recovery settings and backup procedures by manipulating service desks to circumvent MFA.”

An example of this is when hackers contact a service desk claiming their phone is not functioning or is lost, then request a new account which is controlled by an attacker-controlled MFA authentication device. This will allow the hackers to gain control.

SIM swapping

This technique involves Cybercriminals deceiving “service providers into transferring a target’s services to a SIM card under their control.”

The hackers can then effectively take over the target’s mobile phone service and phone number, letting them intercept MFA prompts and gain full access to accounts.

 

Scroll to Top