CandleFocus

A Hidden Threat: FBI Warns of Cookie Exploit Bypassing Multifactor Authentication Security

According to the FBI's Atlanta Division, cybercriminals are now able to bypass multifactor authentication (MFA) by stealing "Remember-Me cookies" from victims' computers. These cookies allow users to stay logged in without having to re-enter credentials or MFA codes. Hackers can obtain these cookies through phishing links or malicious websites that install malware. By exploiting these cookies, cybercriminals can access victims' email accounts without needing usernames, passwords, or MFA codes. To counter this threat, the FBI recommends that users clear browser cookies regularly, avoid using the "Remember Me" option on sensitive accounts, only visit secure websites, and avoid suspicious links.

Related News