ATT&CK 기법 · Credential Access
Multi-Factor Authentication Request Generation T1621
이 기법을 다룬 REVELARE 한국어 위협 분석 2편 · Credential Access
이 기법을 다룬 분석
MITRE 공식 정의
Adversaries may attempt to bypass multi-factor authentication (MFA) mechanisms and gain access to accounts by generating MFA requests sent to users. Adversaries in possession of credentials to [Valid Accounts](https://attack.mitre.org/techniques/T1078) may be unable to complete the login process if they lack access to the 2FA or MFA mechanisms required as an additional credential and security control. To circumvent this, adversaries may abuse the automatic generation of push…
플랫폼: Windows, Linux, macOS, IaaS, SaaS, Office Suite, Identity Provider