Two-factor Authentication Best Practices for Remote Access
Tags
cmtmf-attack-pattern: Masquerading
maec-delivery-vectors: Watering Hole
attack-pattern: Data Direct Credentials - T1589.001 Domain Accounts - T1078.002 Exploits - T1587.004 Exploits - T1588.005 Ip Addresses - T1590.005 Javascript - T1059.007 Masquerading - T1655 Multi-Factor Authentication - T1556.006 Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Python - T1059.006 Server - T1583.004 Server - T1584.004 Software - T1592.002 Trap - T1546.005 Tool - T1588.002 Connection Proxy - T1090 Masquerading - T1036 Powershell - T1086 Trap - T1154 Masquerading
Show in Graph
Common Information
Type Value
UUID 95d01fa2-bb0b-437d-bd9b-8599cd8147e4
Fingerprint 3c11cb181f0273cd
Analysis status DONE
Considered CTI value 0
Text language
Published March 23, 2016, midnight
Added to db Nov. 9, 2023, 12:28 a.m.
Last updated Nov. 19, 2024, 4:54 p.m.
Headline Two-factor Authentication Best Practices: 99 Problems but Two-Factor Ain’t One
Title Two-factor Authentication Best Practices for Remote Access
Detected Hints/Tags/Attributes 89/3/9
Source URLs
Redirection Url
Details Source https://www.mandiant.com/resources/blog/99-problems-but-two-factor-authentication-motivates-red-team
URL Provider
Details Provider Source level domain
Details mandiant.com www.mandiant.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 330 Threat Intelligence https://www.mandiant.com/resources/blog/rss.xml 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 2 
cve-2014-3393
Details Domain 10 
mycompany.com
Details Domain 9 
www.evil.com
Details File 45 
logo.png
Details File 1 
stealcreds.js
Details File 1 
pwnd.php
Details File 1 
including.pst
Details Url 3 
https://www.evil.com
Details Url 1 
https://www.evil.com/pwnd.php