"Hackers Bypass MFA on Cloud Accounts via IMAP Protocol"

Proofpoint researchers conducted a study in which they discovered that a significant portion of Microsoft Office 365 and G Suite accounts have been hit with IMAP-based password-spraying attacks. Attackers perform password-spraying by combining multiple usernames with a single password. The exposure of commonly used usernames and passwords by recent credential dumps has increased the success of such attacks. This article continues to discuss findings of the study in relation to the performance, sources, and targets of IMAP-based password-spraying attacks. 

Security Week reports "Hackers Bypass MFA on Cloud Accounts via IMAP Protocol"