Security News > 2021 > January > US government warns of cyberattacks targeting cloud services
Such attacks often occur when employees work remotely and use a mixture of personal and business devices to access cloud services.
Organizations with remote workers who use cloud-based services are being warned of several recent successful cyberattacks against those services.
In an advisory issued on Wednesday, CISA revealed that hackers have been employing successful phishing campaigns, brute force login attempts, and potentially pass-the-cookie attacks to exploit weaknesses in cloud security practices.
In the observed phishing campaigns, attackers deployed emails with malicious links to try to capture login credentials for cloud service accounts.
The attackers were unable to find the correct username and password credentials, and the organizations used multi-factor authentication to control access to their cloud environment.
At least one attacker was able to compromise a user's account even with the proper use of MFA. CISA said it believes this attacker may have used browser cookies to thwart MFA via a pass-the-cookie attack.