CISA Advises Strongly Against Single Factor Authentication

Share post:

The US Cybersecurity and Infrastructure Security Agency (CISA) recently added single-factor authentication (SFA) to its list of cybersecurity bad practices.

The organization warns that the practice is “exceptionally risky” when used for remote authentication or logging into administrative authorizations because attackers can use the low-security method to gain access to systems. allowing passwords to easily be stolen or guessed by various techniques.

Switching to multi-factor authentication (MFA) helps makes it more difficult for threat actors to carry out a successful attack.\

Commenting on the latest announcement, CISA said: “The use of single-factor authentication for remote or administrative access to systems supporting the operation of Critical Infrastructure and National Critical Functions (NCF) is dangerous and significantly elevates risk to national security, national economic security, and national public health and safety.”

For more information, read the original story in Bleeping Computer.



Related articles

Microsoft announces enhanced security feature for OneNote

Microsoft has released further information on the increased security measures it is deploying for OneNote in order to...

Russian hacker group steals Emails of NATO officials and diplomats

Since February 2023, a Russian hacking gang known as TA473 or 'Winter Vivern' has targeted unpatched Zimbra endpoints...

Canadian cybersecurity accelerator counts its accomplishments

A Canadian university-associated business accelerator for helping early-stage cybersecurity companies says its first two years of operation have been more than satisfactory. The Rogers Cybersecure Catalyst Accelerator has had “an incredible impact” on Canadian cybersecurity entrepreneurs and founders, executive director Charles Finlay said this week in the first report on the program’s progress. Despite having

Crackdown on ransomware gangs yet to show an impact: OpenText

In its annual cybersecurity report OpenText also looked at malware, phishing and infec

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways