IEEE

CoordAuth: Hands-Free Two-Factor Authentication in Virtual Reality Leveraging Head-Eye ...

Abstract: We present CoordAuth, a gaze-based two-factor authentication technique in VR utilizing implicit head-eye motion features to offer a more secure and natural alternative to traditional pattern ...
The Hacker News

Where Multi-Factor Authentication Stops and Credential Abuse Starts

Organizations typically roll out multi-factor authentication (MFA) and assume stolen passwords are no longer enough to access systems. In Windows environments, that assumption is often wrong.
IEEE

Usability and Security Analysis of the Compare-and-Confirm Method in Mobile Push-Based Two ...

Abstract: Push-based two-factor authentication (2FA) methods, such as the ”Just-Confirm” approach, are popular due to their user-friendly design, requiring users ...
The Hacker News

Starkiller Phishing Suite Uses AitM Reverse Proxy to Bypass Multi-Factor Authentication

Cybersecurity researchers have disclosed details of a new phishing suite called Starkiller that proxies legitimate login pages to bypass multi-factor authentication (MFA) protections. It's advertised ...