WATCH: This hacker shows how to beat two-factor authentication

A security researcher, Chief Hacking Officer of company KnowBe4 Kevin Mitnick has developed a social engineering attack to breach two-factor authentication, TechCrunch reported.

In a public video, Mitnick produced a video on YouTube showing how the exploit works by sending victims to a fake login page.

The site requests your username, password, and authentication code, which it passes to the legitimate site to log you in, while capturing the session cookie in the process.

This is known as a phishing attack.

What is a phishing attack?

Phishing is the attempt of a hacker to obtain sensitive and personal information such as usernames, passwords, and credit card details, often for malicious reasons. 

Once this is done, the hacker can log in whenever they want, according to the report.

While the attack was demonstrated on LinkedIn, Mitnick’s company KnowBe4 warned that the attack could be weaponised for any site.

Additionally, Stu Sjouwerman, CEO of KnowBe4 told TechCrunch that anti-phishing education is deeply important and that a hack like this is impossible to complete if the victim is savvy about security and the dangers of clicking links that come into your email box.

WATCH IT HERE:  https://www.iol.co.za/business-report/technology/watch-this-hacker-shows-how-to-beat-two-factor-authentication-14899509

In other hacker news, The Business Report team tested a tutorial earlier this year that was shown by a young female whose video received over 1,7 million views showing how she hacked her boyfriend's WhatsApp 

We tested the hacking process on both Android and Apple devices and the hack worked on both systems with relative ease.

It is worth noting that the video was first posted on Facebook 11 months ago, and yet there seem to be no security measures implemented by WhatsApp to prevent or notify this relatively easy hacking process.

For the original article and more fantastic tech news refer to the source.

Source: BusinessReport

Topics: Social Engineering, session cookie capture, Speaking Engagements, two factor authentication breach, Chief Hacking Officer, KnowBe4, Stu Sjuwerman, phishing, Kevin Mitnick

Latest Posts

Kevin offers three excellent presentations, two are based on his best-selling books. His presentations are akin to technology magic shows that educate and inform while keeping people on the edge of their seats. He offers expert commentary on issues related to information security and increases “security awareness.”

Mitnick Security Training: QR Code Cybersecurity Test

Nearly 90 million smartphone users in the U.S. alone have used QR codes on their mobile devices. By 2025, that number is projected to grow to 100 mill..

Read more ›

Celebrating National Social Engineering Day

August 6th, 2024, marks the first annual National Social Engineering Day, an opportunity to raise awareness about social engineering threats and empha..

Read more ›

The Growth of Third-Party Software Supply Chain Cyber Attacks

When testing your employees' social engineering readiness, your teams need simulated attacks that feel as if they’re coming from a nefarious engineer...

Read more ›
tech-texture-bg