Security Stories/Lessons Learned/Case Studies

R1-3A. Hacking MFA

Thursday, June 13, 2024 9:15 AM - 10:15 AM

Room 3A

Description

Everyone knows that multi-factor authentication (MFA) is more secure than a simple login name and password, but too many people think that MFA is a perfect, unhackable solution. It isn't! I can send you a regular phishing email and completely take control of your account even if you use a super-duper MFA token or smartphone app. Attend this presentation and learn the 12+ ways hackers can and do get around your favorite MFA solution. The presentation will include a (pre-filmed) hacking demo and real-life successful examples of every attack type. It will end by telling you how to better defend your MFA solution so that you get maximum benefit and security.

Learner Objectives

After this session, learner will: *Understand the different types of MFA *Learn the security weaknesses of different types of MFA *Learn how to improve any MFA solution