Internet

Hackers Use Cookies to Bypass Two-Factor Authentication

Hackers Use Cookies to Bypass Two-Factor Authentication
Hackers Use Cookies to Bypass Two-Factor Authentication
Advertisements

Two-factor authentication is one of the most powerful tools we have to ensure our personal security in today’s world of the internet. Most major websites, social media, and banking systems now support two-factor authentication systems. But hackers also found a way to circumvent this seemingly insurmountable method.

According to the latest cybersecurity reports, hackers can bypass two-factor authentication by using cookies on your device.

Advertisements

Hackers Use Cookies to Bypass Two-Factor Authentication

Don’t Forget To Clear Your Cookies Regularly!

The published report includes information on how hackers can steal cookies based on login details and how they copy logins from programs or websites that don’t regularly reset themselves. Hackers use web-based applications, web services, malware-infected emails and ZIP files to obtain cookies. If important information in cookies is received, two-factor authentication can be imitated and accounts can be logged in.

Advertisements

Today, although almost all devices and browsers have systems to protect cookies, this information can still be stolen. Cyber ​​security company Sophos states that Emotet Botnet , which is shown among the most dangerous software in the world, can steal cookies such as login information and payment card data stored by frequently used browsers such as  Google Chrome .

One of the recent victims of the cookie theft has been EA Games . The hackers, who managed to steal the cookies that the employees of the famous game company kept on their devices, sold this information to a hacker group called Lapsus$ . Hackers, who processed 780 GB of data, managed to log in to the internal private accounts used by EA Games and accessed the source codes used in the games with the game engine . Threatening to give EA Games these codes to the internet and its competitors, Lapsus$ demanded a large amount of money in exchange for blackmail.

According to the cybersecurity company Sophos, which published the report, one of the best ways to protect yourself from hackers is to regularly clear your cookies. Thus, access to the important information that is constantly kept can be prevented and your account security can be maximized.

Advertisements

You may also like

Comments are closed.

More in:Internet