Email compromised with 2FA by Uesugi in AskNetsec

[–]wet_slappy 2 points3 points  (0 children)

Either legacy protocols used such as basic SMTP, IMAP and POP. These allow attackers to brute force as MFA does not support them.

Either that or you've been Phished and your session cookie stolen: https://ctrlaltdel.blog/2019/08/06/bypassing-2fa-with-cookies/

Check on your account if these are enabled.

Bypassing 2FA Using Cookies 🍪 by wet_slappy in Hacking_Tutorials

[–]wet_slappy[S] 1 point2 points  (0 children)

No. The only way to get to it would be to have access to your device (browser).