Learning lessons: Fully implement multi-factor authentication
In brief: Recently a report of the cyber-attack (October 2023) on the British Library was published and it shows that on some on-premise servers multi-factor authentication (MFA) was not fully implemented, and the absence of MFA contributed to the attackers’ ability to enter the system.
The 18 pages report contains 16 Learning lessons from the attack and lesson nr. 3 is Fully implement multi-factor authentication –
“Multi-factor authentication needs to be in place on all internet-facing endpoints, regardless of any technical difficulties in doing so. The Library had MFA in place for all end-user technologies, but not on certain supplier endpoints”.
About Rohos Logon Key
Rohos Logon Key adds strong two-factor authentication for Windows Remote Desktop login and safeguards to prevent 2FA / MFA bypass attacks. Rohos Logon implements multi-factor authentication control, where you can combine different MFA methods: password, PIN code, Smartphone, or strong authentication devices like U2F key, YubiKey, Google Authenticator One-Time password codes, SafeNet iKey tokens, or RFID cards. With Rohos you can protect standalone computers, Active Directory workstations, Terminal Servers, Azure and AWS workstations, or Apply MFA on top of other remote assistance solutions like TeamViewer, and AnyDesk.
Rohos is the only MFA solution that allows the prevention of MFA bypass, reporting to SIEM and creating smartphone push notifications in case of any MFA discrepancies.
Download and try the latest Rohos Logon Key for 15-day (full version) >>