EMAIL SECURITY: Use domain email accounts NOT Freemail as Cybercriminals Bypass MFA by Stealing Cookies

Helping Keep Small Business CYBERSafe!
Gibraltar: Wednesday 06 November 2024 at 12:00 CET

EMAIL SECURITY: Why you need to use your domain email accounts NOT Free mail as Cybercriminals Bypass Multifactor Authentication by Stealing Cookies

By: Iain Fraser – Cybersecurity Journalist
CYBERInsights – First for SME Cybersecurity News
#CyberInsights #CyberSecurity #CyberMedia #CyberPR #CyberAwareness
#SME #SmallBusiness #smallbusinessowner

The FBI’s Atlanta Division has issued a warning about cybercriminals using stolen cookies to gain access to email accounts. These criminals are targeting “Remember-Me cookies,” which store login details on a user’s device, allowing access without repeatedly entering a username, password, or multifactor authentication (MFA).

A “cookie” is a small piece of data a website sends to a user’s device, saving session information like login credentials, preferences, or shopping cart contents. “Remember-Me cookies” are specifically tied to a user’s login and generally last for around 30 days. This type of cookie is often created when users select “Remember this device” upon logging in.

If a cybercriminal steals a recent Remember-Me cookie from a user’s web email login, they can impersonate the user and bypass MFA. To steal these cookies, cybercriminals use phishing links or malicious websites, tricking victims into unknowingly downloading harmful software onto their devices.

Here are tips to protect yourself from putting yourself at risk:

• Regularly clear your cookies from your Internet browser.

• Recognize the risks of clicking the “Remember Me” checkbox when logging into a website.

• Do not click on suspicious links or websites. Only visit sites with a secure connection (HTTPS) to protect your data from being intercepted during transmission.

• Periodically monitor the recent device login history from your account settings.

CYBER Insights – Helping Keep Small Business CYBERSafe!

Launched in 2020 by Cybersecurity Journalist Iain Fraser and his team at IfOnly… CYBERInsights was developed to be the go-to platform providing definitive, reliable & actionable Cybersecurity News, Intel, Awareness & Training specifically written and curated for Small Business & Enterprise Owners, Partners and Directors throughout the UK. #CyberInsights #CyberSecurity #CyberMedia #CyberPR #CyberAwareness #SME #SmallBusiness #smallbusinessowner

What is a VPN & Does my SME Need one? A VPN is a Virtual Private Network a method of securing your communications credentials. When it comes to Small and Medium-sized enterprises (SMEs), the choice of VPNs can significantly impact the security and efficiency of their operations.

The NordVPN service allows you to connect to 5600+ servers in 60+ countries. It secures your Internet data with military-grade encryption, ensures your web activity remains private and helps bypass geographic content restrictions online. Join NordVPN Today and Save up to 73% and Get 3 months Extra Free Rude Not to …!

LinkedIn Tweet Email

Tags: #CYBERThreatIntel

CYBER INSURANCE: A third of UK businesses reported that Cybersecurity counter-measures compromised

LATEST THREAT INTEL: SATORI – Phish ’n’ Ships Fakes Online Shops to Steal Cash & Card Data

LATEST THREAT INTEL: QUISHING – Major Banks Sound Alarm Over Sophisticated “Quishing” Scams