News on Medial

How Google Authenticator made one company’s network breach much, much worse

ArstechnicaArstechnica · 1y
How Google Authenticator made one company’s network breach much, much worse

Security company Retool criticized Google's authenticator app for making a recent internal network breach worse. The breach resulted in attackers gaining access to the accounts of 27 customers in the cryptocurrency industry. The attack started when a Retool employee clicked on a text message link claiming to be from the company's IT team. The employee logged into the linked site and provided a password and a temporary one-time password (TOTP) from Google authenticator. The attackers then called the employee, claiming to be an IT team member, and obtained an additional multi-factor code. Retool argues that Google's recent synchronization feature for authenticator codes is highly insecure, as it allowed the attackers to compromise multiple company accounts.

Comments

Download the medial app to read full posts, comements and news.