Infostealer malware infections combined with the absence of Multi-Factor Authentication (MFA) have led to numerous data breaches at major global institutions. Threat actors like Zestix and Sentap exploit stolen credentials from infected devices to access critical systems without needing zero-day vulnerabilities. #Zestix #Infostealer
Keypoints
- Infostealer malware, such as RedLine and Vidar, harvests credentials from infected employee devices.
- Attackers use stolen credentials to access cloud portals like ShareFile, Nextcloud, and OwnCloud.
- The lack of Multi-Factor Authentication (MFA) is identified as the primary vulnerability in these breaches.
- Many credentials used for breaches had been stored in logs for years, increasing risk over time.
- Organizations are urged to enable MFA, rotate passwords, and review access logs to prevent similar attacks.
Read More: https://thecyberexpress.com/infostealers-and-lack-of-mfa-led-to-breaches/