"Vulnerability Could Allow Insider to Bypass CEO's Multi-Factor Authentication"
Okta researcher, Andrew Lee, found a vulnerability in Microsoft's Active Directory Federation Services (ADFS). ADFS is a feature that allows organizations to implement multi-factor authentication for enhanced security. The exploitation of the vulnerability contained by ADFS could allow an attacker to gain access to all accounts within an organization, including the account of a CEO. This article continues to discuss the flaw in relation to its concept, abuse, and mitigation.
Submitted by Anonymous
on