How the SolarWinds Hackers Bypassed Duo’s Multi-Factor Authentication
Schneier on Security
DECEMBER 15, 2020
Logs from the Exchange server showed that the attacker provided username and password authentication like normal but were not challenged for a second factor through Duo. The logs from the Duo authentication server further showed that no attempts had been made to log into the account in question.
Let's personalize your content