Root Causes 335: When MFA Is Not MFA

29/09/2023 9 min

Listen "Root Causes 335: When MFA Is Not MFA"

Descargar episodio Ver en sitio original

Episode Synopsis

In this episode we describe a social engineering attack to steal a one-time password (OTP) to enable unauthorized access. This incident further exploited a cloud backup feature to extend the scope of the breach. We explain.

More episodes of the podcast Root Causes: A PKI and Security Podcast

Root Causes 54: What Is Chain of Lure? 07/11/2025

Root Causes 543: AI Finds a Zero Day 05/11/2025

Root Causes 542: Use Cases for HQC 02/11/2025

Root Causes 541: Introducing the HQC PQC Algorithm 31/10/2025

Root Causes 540: Contextual CBOM 27/10/2025

Root Causes 539: What Is the Two-QWAC Architecture? 22/10/2025

Root Causes 538: What Is an Entropy Desert? 20/10/2025

Root Causes 537: The Thermodynamics of Privacy 17/10/2025

Root Causes 536: Patent Blocker on ML-KEM 15/10/2025

Root Causes 535: The CPS Is a Superset of Actual Practices 12/10/2025

Ver todos los episodios

ZARZA We are Zarza, the prestigious firm behind major projects in information technology.

Root Causes 335: When MFA Is Not MFA

Listen "Root Causes 335: When MFA Is Not MFA"

Episode Synopsis

More episodes of the podcast Root Causes: A PKI and Security Podcast

CAPTCHA for human verification!

WWW. Is it obsolete or not? Should we use it?

Bandwidth: Broadband or Narrowband?

Personnel recruitment via Web

Deep web or Invisible Internet

Subdomains, a glance with the experts!

Free Internet, a prediction in Nostradamus style

Educational Technology: From traditional to digital

Localhost, there’s no place like 127.0.0.1

Googling with breathtaking tricks you ignore

Gray Hat Hacking, those with ambiguous ethics…

Internet Predators on the prowl

Dot COM: The Internet’s dominant TLD