Even MFA is not foolproof: closing the holes in Microsoft with Barracuda

On 17 February, Kappa Data and Barracuda Networks held a webinar covering two topics. The first was the Barracuda Networks security ecosystem (mapped to the Kappa Data IT Compass), and the second was a live hacking demonstration in which MFA was bypassed.

The Barracuda Ecosystem and the Power of Layered Security

Kappa Data emphasizes that a truly secure network rests on several essential foundations, including Identity, ZTNA, Firewalls and Application Protection. For resellers today, it is crucial to adopt a layered security strategy, but without getting bogged down in a cluttered tangle of different portals and different configuration methods.

BarracudaONE offers the all-encompassing solution for this: it acts as a central platform that provides a crystal-clear overview of Barracuda’s broad IT landscape. This enables resellers to present a powerful, streamlined and unambiguous proposition to their end customers.

The Reality of MFA Bypass and Account Takeover

During a recent live hacking demonstration, it became painfully clear how vulnerable standard security measures can be in practice. For example, an attacker could send a spoofed Microsoft login page through a targeted phishing email. Even when an attentive user neatly accepts the default MFA prompt via the Microsoft Authenticator, the hacker can intercept and steal the so-called session token.

With this token in their hands, the attacker gains full access to the entire Microsoft environment, resulting in a complete account takeover. This scenario proves conclusively that MFA alone is not always enough to effectively keep sophisticated and targeted attacks at bay.

Barracuda Managed XDR and the Power of SOC Support

To detect such breaches in time and neutralize them immediately, Barracuda Managed XDR is an indispensable umbrella product within architecture. Barracuda’s Security Operations Center (SOC) continuously receives telemetry from a wide variety of sources, such as Microsoft 365, email security, and EDR agents.

By intelligently correlating all this data with each other, the SOC team can perform an in-depth root-cause analysis. Unlike passive systems, the Barracuda SOC team can intervene directly. They block compromised accounts, accurately map the hacker’s actions, and work closely with the reseller to eliminate the threat.

Conclusion: An integral safety partner

Barracuda Networks positions itself not merely as a supplier of stand-alone individual products, but as a complete, integral security partner. The real strength of the solution lies in the synergy between the following three pillars:

• Prevention: Building a robust and secure network through layered protection.

• Detection & Response: Constant monitoring and active intervention through the Managed XDR and SOC services.

• Recovery: Comprehensive incident support through backup and monitoring to ensure business continuity at all times.

Conclusion: Barracuda Networks is your security partner, helping you not only to build a secure network but also to ensure you have support should things go wrong (backup, monitoring, SOC services). For more information, contact us at [email protected].