When big companies act dumb – Sorry, but Cisco’s Duo multifactor-authentication exploit was just plain, old stupid programming.

Konik The Horse Fun Stupid Mina Pet Funny Teeth 290907

Reports are emerging that Russian state-sponsored cyber actors are taking advantage of an astoundingly stupid default configuration for Cisco’s Duo multifactor authentication (MFA) protocols. The Ruskies have been able to use Cisco’s mistake to register new devices for MFA and yep, access the victim’s network where they do all sorts of nasty things. The cyber…

Read more