Cybersecurity company Avast announced that its internal network was hacked via a VPN connection. The attackers compromised an employee’s VPN credentials and had network access for more than four months.
Through a successful privilege escalation, the actor managed to obtain domain admin privileges.
According to Avast, the breach happened because the employee’s account was not set up with multi-factor authentication (MFA).
Of course, a VPN can be safely used. Follow best practices, and evaluate the VPN use cases at your organization to mitigate risk. Start with this free checklist: