Two-factor authentication oversight led to JPMorgan breach, investigators reportedly found

The attackers who stole information about 83 million JPMorgan Chase customers earlier this year gained a foothold on the company’s network because a server reportedly lacked two-factor authentication.

The attackers stole the login credentials of a JPMorgan employee and were able to access the server, despite the company’s practice of using two-factor authentication on most of its systems, the New York Times reported citing unnamed sources familiar with the internal and external investigations at JPMorgan.

To read this article in full or to leave a comment, please click here