Over 10K Fortinet firewalls exposed to actively exploited 2FA bypass

Over 10,000 Internet-exposed Fortinet firewalls are still vulnerable to attacks exploiting a five-year-old two-factor ...

Fortinet warns of 5-year-old FortiOS 2FA bypass still exploited in attacks

Fortinet has warned customers that threat actors are still actively exploiting a critical FortiOS vulnerability that allows ...
Forbes

Google And Microsoft Users Warned As New 2FA Bypass Attacks Reported

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Update, Dec. 25, 2024: This story, originally published Dec.
Forbes

New Windows Warning As Hacker Breaks Google Chrome 2FA Security Encryption

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Update, Oct. 31, 2024: This story, originally published Oct.
Threat Post

Box 2FA Bypass Opens User Accounts to Attack

A security bug in the file-sharing cloud app could have allowed attackers using stolen credentials to skate by one-time SMS code verification requirements. A security hole in Box, the cloud-based file ...
Yahoo

Cybercriminals Are Fooling Help Desks to Bypass 2FA

Scattered Spider now targeting airlines. Bypasses 2FA via help desk tricks. Strict security protocols are necessary for prevention. The FBI has issued a fresh cybersecurity alert, warning that the ...
The Hacker News

Fortinet Warns of Active Exploitation of FortiOS SSL VPN 2FA Bypass Vulnerability

Fortinet reports active attacks exploiting CVE-2020-12812, a FortiOS SSL VPN flaw that can bypass two-factor authentication in specific LDAP setups.
Dark Reading

Facebook Bug Allows 2FA Bypass Via Instagram

A bug-bounty hunter found an issue in Meta's Instagram API endpoints that could allow a threat actor to launch brute-force attacks and bypass two-factor authentication (2FA) on Facebook. The ...