<p>In this episode we describe a social engineering attack to steal a one-time password (OTP) to enable unauthorized access. This incident further exploited a cloud backup feature to extend the scope of the breach.  We explain.</p>

In this episode we describe a social engineering attack to steal a one-time password (OTP) to enable unauthorized access. This incident further exploited a cloud backup feature to extend the scope of the breach. We explain.

Root Causes 335: When MFA Is Not MFA

Digital certificate industry veterans Tim Callan and Jason Soroko explore the issues surrounding digital identity, PKI, and cryptographic connections in today's dynamic and evolving computing world. Best practices in digital certificates are continually under pressure from technology trends, new laws and regulations, cryptographic advances, and the evolution of our computing architectures to be more virtual, agile, ubiquitous, and cloud-based. Jason and Tim (and the occasional guest subject matter expert) will help you stay current on developments in this essential technology platform and to understand the whys and wherefores of popular Public Key Infrastructures.

Share Root Causes 335: When MFA Is Not MFA

Sign up to save your podcasts

Root Causes 335: When MFA Is Not MFA

Root Causes 335: When MFA Is Not MFA

More shows like Root Causes: A PKI and Security Podcast

Planet Money

Hacked

Security Now (Audio)

WSJ Tech News Briefing

Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

Risky Business

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

CyberWire Daily

Darknet Diaries

Hacking Humans

CISO Series Podcast

The Peter Attia Drive

The Journal.

All-In with Chamath, Jason, Sacks & Friedberg

Risky Bulletin