Passwords, MFA, and why neither is enough

Passwords, MFA, and why neither is enough

Passwords weren’t enough, so we added MFA. Now MFA isn’t enough either. In this Help Net Security video, Karlo Zatylny, CTO/CISO at Portnox, walks through why each layer of identity security has failed and what comes next. SMS codes can be intercepted through SIM swapping. Authenticator apps are vulnerable to replay attacks and push bombing. And even when MFA works correctly, session hijacking can let attackers impersonate a user after authentication is complete. The solution … More →

The post Passwords, MFA, and why neither is enough appeared first on Help Net Security.

Related Posts

New infosec products of the week: March 13, 2026

New infosec products of the week: March 13, 2026

INTERPOL Dismantles 45,000 Malicious IPs, Arrests 94 in Global Cybercrime

INTERPOL Dismantles 45,000 Malicious IPs, Arrests 94 in...

Investigating a New Click-Fix Variant

Investigating a New Click-Fix Variant

Storm-2561 Spreads Trojan VPN Clients via SEO Poisoning to Steal Credentials

Storm-2561 Spreads Trojan VPN Clients via SEO Poisoning...

EU Parliament backs extension of CSAM detection rules until 2027

EU Parliament backs extension of CSAM detection rules u...

Nine CrackArmor Flaws in Linux AppArmor Enable Root Escalation, Bypass Container Isolation

Nine CrackArmor Flaws in Linux AppArmor Enable Root Esc...