Security News > 2019 > March > Attackers are exploiting IMAP to bypass MFA on Office 365, G Suite accounts

Attackers are exploiting IMAP to bypass MFA on Office 365, G Suite accounts
2019-03-20 12:21

Where possible, and especially for important accounts such as Office 365 and G Suite accounts, the prevailing advice for users is to enable two-factor authentication. Unfortunately, that security measure does not stop some attackers that engage in password-spraying attacks. During a six-month study of major cloud service tenants, Proofpoint researchers have found that approximately 60% of Microsoft Office 365 and G Suite tenants were targeted with IMAP-based password-spraying attacks, and roughly 25% of them experienced … More → The post Attackers are exploiting IMAP to bypass MFA on Office 365, G Suite accounts appeared first on Help Net Security.


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/RJbGHaek-6c/