'The hackers behind the supply chain attack that compromised public
and private organizations have devised a clever way to bypass
multi-factor-authentication systems protecting the networks they
Researchers from security firm Volexity said on Monday that it had
encountered the same attackers in late 2019 and early 2020 as they
penetrated deep inside of a think tank organization no fewer than
During one of the intrusions, Volexity researchers noticed the hackers
using a novel technique to bypass MFA protections provided by Duo.
After having gained administrator privileges on the infected network,
the hackers used those unfettered rights to steal a Duo secret known
as an akey from a server running Outlook Web App, which enterprises
use to provide account authentication for various network services.'
Dept. of Computer Science
University of Waikato, NZ
+64 (7) 577-5304