Referrals

News

Clear Sailing IT Solutions Blog

Clear Sailing IT Solutions has been serving the St Augustine area since 2021, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

Man-in-the-Middle(MITM) In-PathAttacks

clearsailblog

Compromise Description:

In the world of cryptography and computer security, a man-in-the-middle (MITM) attack, also known as an in-path attack, occurs when an attacker secretly relays and possibly alters the communications between two parties who believe they are directly communicating with each other.

This includes Chats, Phishing Emails, and even Phone Calls.

The largest trend right now is the use of a program called (Evilginx2). It produces a link to a landing page that looks legitimate. In which the unknowing user clicks a link in an email or website routing them to a page, where they are asked to log into their Microsoft account, once authenticated, the hacker has full control of that users account, not needing a password or their 2FA (2 factor authentication).

What are we doing to combat these attacks?

  1. Force strong passwords that require changing at set intervals.
  2. Review and Audit all clients tenant security settings.
  3. Implementation of more granular Login location tracking and reporting, including AI.
  4. Regular Email Phish Training for end users.

Visual Changes users may or may not notice.

  1. Conditional access. Single sign-on (SSO), will make authentication more fluid in the office, but stricter in other locations outside the office.
  2. Regular password changes or forced password changes.
  3. 100% 2FA adoption of all clients and users.

Customer Login

News & Updates

Compromise Description: In the world of cryptography and computer security, a man-in-the-middle (MITM) attack, also known as an in-path attack, occurs when an attacker secretly relays and possibly alters the communications between two parties who bel...

Contact us

Learn more about what Clear Sailing IT Solutions can do for your business.

Clear Sailing IT Solutions
52 Tuscan Way Suite 202-335
St Augustine, Florida 32092

Copyright Clear Sailing IT Solutions. All Rights Reserved. 52 Tuscan Way Suite 202-335, St Augustine, Florida 32092