Breach Roundup: Cookie Bite Exposes MFA Achilles Heel

Also, Blue Shield Breach Exposes 4.7M, Cyberattack Disrupts City Systems in Texas Anviksha More (AnvikshaMore) • April 24, 2025

Every week, Information Security Media Group rounds up cybersecurity incidents and breaches around the world. This week, a Cookie Bite attack bypasses MFA in Azure Entra ID, Microsoft fixed RDP Freezes, a ransomware attack in Catalonia, Blue Shield exposed data to Google, a cyberattack disrupted city systems in Texas, a South Korean telecom breach exposed USIM data and a warning about North Korean IT deepfakes.

See Also: Top 10 Technical Predictions for 2025

Varonis Threat Labs researchers outlined an attack technique it dubs "Cookie-Bite" exploiting persistent authentication cookies bypass multifactor authentication protections in the Azure cloud.

Azure's Entra ID identity and access management service sets cookies named ESTSAUTH and ESTSAUTHPERSISTENT. The attack envisioned by Varonis would grant persistent access to Microsoft 365 services like Outlook and Teams ...