BladesDynamicDemoBlade

Dark reading logo

News

Health it security logo

Threat post logo

While brute-forcing and password spraying techniques are the most common way to mount account takeovers, more methodical cybercriminals are able to gain access to accounts even with more secure MFA protocols in place.

Attackers Hone in on MFA Bypass Options for Account Takeovers

Researchers observed an increase in business email compromise phishing campaigns able to bypass MFA, while Trend Micro found an uptick in BEC scams targeting executive Office 365 accounts.

BEC Phishing Campaigns Bypass MFA, Target Office 365 Executive Accounts

Fortune logo

Symbol white 01b

Press Releases

Trends in BEC and email security during Q2 2020 included a peaking and plateauing of COVID-19-themed email attacks, an increase in BEC attack volume and acceleration of payment and invoice fraud. The report also reveals that Zoom supplanted American Express as the most impersonated brand in email attacks.

Abnormal Security Quarterly BEC Report Shows How COVID-19 Zeitgeist Permeates Email Cyberattacks on Businesses

In June, Obinwanne Okeke, a Nigerian “entrepreneur” who appeared on the cover of the African edition of Forbes in 2016, pleaded guilty to charges of fraud. Turned out Okeke’s company, Invictus Group, named after Nelson Mandela’s favorite poem, was a front. Between 2015 and 2019, the founder’s crew orchestrated a series of hacks and scams, including one campaign that swindled Unatrac Holding, a sales office of Caterpillar, the construction giant, out of $11 million.

Don’t click that Zoom invitation!

Homepage

Breadcrumbs

Abnormal AI provides advanced email security to prevent credential phishing, business email compromise, account takeover, and more.

Abnormal AI

Multifactor authentication (MFA) is widely regarded as a strong measure for protecting against account takeover attacks. But as with almost any security control, adversaries have devised several ways to bypass it.Researchers from Abnormal Security this week reported observing a recent increase in attacks where threat actors used legacy apps with old email protocols, such as IMAP, SMTP, and POP, to access and take over business email accounts protected with MFA.

Business Email Compromise Attacks Involving MFA Bypass Increase

Multifactor authentication (MFA) is widely regarded as a strong measure for protecting against account takeover attacks. But as with almost any security…

description

email, attacks, security, apps, protocols, business, takeover, control, abnormal, week, increase, threat, accounts, widely, regarded

keywords

https://images.abnormalsecurity.com/production/images/press/dark-reading-logo.png?w=1200&h=630&q=82&auto=format&fit=crop&dm=1631719960&s=9637c74c23b64baceeed68e680b62c97

https://abnormal.ai/about/news/business-email-compromise-attacks-involving-mfa-bypass-increase

referrer

robots

twitter:card

twitter:creator

twitter:description

https://images.abnormalsecurity.com/production/images/press/dark-reading-logo.png?w=800&h=418&q=82&auto=format&fit=crop&dm=1631719960&s=6daecc8d80c117131e021afc4b60d90f

twitter:image

twitter:image:alt

twitter:image:height

twitter:image:width

twitter:site

twitter:title

{"title":{"title":"Business Email Compromise Attacks Involving MFA Bypass… | Abnormal AI"}}

Multifactor authentication (MFA) is widely regarded as a strong measure for protecting against account takeover attacks. But as with almost any security control, adversaries have devised several ways to bypass it.

Researchers from Abnormal Security this week reported observing a recent increase in attacks where threat actors used legacy apps with old email protocols, such as IMAP, SMTP, and POP, to access and take over business email accounts protected with MFA.

Demo

Schedule a Demo

AI's Role in Cyber Defense

CNBC Disruptor 50: Abnormal Security

Generative AI Could Revolutionize Email—for Hackers

Ones to Watch in Tech

Email Subscribe

<p>Subscribe to our newsletter to receive updates on the latest attacks and new trends in the email threat landscape.</p>

Newsroom

Introducing Abnormal’s Biggest Product Release Yet

<p>Announcing Our Biggest Product Release Yet</p>

vs Mimecast

vs Avanan

Secondary CTA

Whether FormComplete is utilized on a form

FormComplete

CTA Display

What text is displayed on the primary CTA (see sheet for details on copy)

Primary CTA Text

Form Columns

chakra-ui-ChakraProvider

Button

EmbeddedVideo

EyebrowText

Footer

Screen

PrimaryCtaText

FormColumns

CtaDisplay

VsMimecast

SecondaryCta

VsAvanan

Abnormal Solutions

react-awesome-reveal

lottie-react

date-fns

plasmic-nav

react-scroll-parallax-global

plasmic-embed-css

Abnormal Pages

loading-boundary

plasmic-query

plasmic-basic-components

Abnormal Legal

Abnormal Why Abnormal

Abnormal Landing Pages

react-aria

plasmic-rich-components

Abnormal Partners

Abnormal Products

Abnormal Design System

Abnormal Marketing

antd5 hostless

react-slick

Gartner mq 4x

Analyst Research

Gartner names Abnormal a Leader in Email Security Platforms, placed furthest for Completeness of Vision.

Abnormal Named a Leader in 2024 Gartner® Magic Quadrant™

Email Security

B 1500x1500 MKT856 Aimpoint report 1

White Papers

Discover how replacing your SEG with Abnormal’s behavioral AI boosts protection, cuts costs, and reduces manual work—backed by real customer results.

The Unexpected Benefits of Replacing a Secure Email Gateway with Abnormal AI

Abnormal Platform

B 1500x1500 Aim Point SAT Awareness Survey Report

Discover why traditional SAT programs are falling short and how modern, AI-enhanced approaches reduce human risk and improve your security posture.

2025 State of Security Awareness Training

B Inside the AI Arms Race Malicious AI WP

Discover how attackers are abusing trusted AI tools and using malicious GPTs to scale cybercrime—and how to stay ahead of the threat.

Inside the AI Arms Race: How Cybercriminals Exploit Trusted Tools and Malicious GPTs

Generative AI

B H1 2025 Email Threat Report

Threat Reports

Learn how the malicious use of AI is amplifying the impact of BEC, VEC, and phishing attacks in our latest threat report.

H1 2025 - Adversarial AI: Attacker Innovation Escalates Advanced Email Threats

Business Email Compromise Attacks Involving MFA Bypass Increase

See How Abnormal AI Protects Humans