Amid the Colonial Pipeline and JBS ransomware attacks that sparked shockwaves among media worldwide, news broke that attackers were able to compromise Colonial Pipeline through a legacy VPN account. The account lacked multifactor authentication (MFA) and wasn’t in active use within the business, a scenario unlikely to be unique to the fuel pipeline.
Read full article on Threat Post