{"id":143268,"date":"2022-12-06T11:58:00","date_gmt":"2022-12-06T16:58:00","guid":{"rendered":"https:\/\/www.cyberark.com\/blog\/podcasts\/ep-16-beware-of-stolen-cookies-for-mfa-bypass\/"},"modified":"2026-05-25T01:36:34","modified_gmt":"2026-05-25T05:36:34","slug":"ep-16-beware-of-stolen-cookies-for-mfa-bypass","status":"publish","type":"podcast","link":"https:\/\/www.cyberark.com\/de\/podcasts\/ep-16-beware-of-stolen-cookies-for-mfa-bypass\/","title":{"rendered":"EP 16 &#8211; Beware of Stolen Cookies for MFA Bypass"},"content":{"rendered":"<p>Today&#8217;s episode is a bit of a year-end cybersecurity fortune cookie. Its focus is an attack trend that&#8217;s surged in 2022: Cookie hijacking (aka stolen cookies). Session cookies, that is. And it\u2019s an attack trend CyberArk Labs researchers predict will continue to flourish in 2023. To dig into the stolen cookies trend and what&#8217;s coming next, host David Puner talks with VP of CyberArk Red Team Shay Nahari, and Research Evangelist of CyberArk Labs, Andy Thompson, both of whom have spent a considerable amount of time popping the hood on the trend. And it&#8217;s something you should be thinking about too in preparing for 2023 cybersecurity challenges.<\/p>\n","protected":false},"featured_media":214314,"template":"","class_list":["post-143268","podcast","type-podcast","status-publish","has-post-thumbnail","hentry"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v27.2 (Yoast SEO v27.2) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>EP 16 - Beware of Stolen Cookies for MFA Bypass | CyberArk<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.cyberark.com\/de\/podcasts\/ep-16-beware-of-stolen-cookies-for-mfa-bypass\/\" \/>\n<meta property=\"og:locale\" content=\"de_DE\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"EP 16 - Beware of Stolen Cookies for MFA Bypass\" \/>\n<meta property=\"og:description\" content=\"Today&#8217;s episode is a bit of a year-end cybersecurity fortune cookie. Its focus is an attack trend that&#8217;s surged in 2022: Cookie hijacking (aka stolen cookies). Session cookies, that is. And it\u2019s an attack trend...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.cyberark.com\/de\/podcasts\/ep-16-beware-of-stolen-cookies-for-mfa-bypass\/\" \/>\n<meta property=\"og:site_name\" content=\"CyberArk\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/CyberArk\/\" \/>\n<meta property=\"article:modified_time\" content=\"2026-05-25T05:36:34+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.cyberark.com\/wp-content\/uploads\/2022\/12\/cnR3b3JrLmpwZw-3.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1400\" \/>\n\t<meta property=\"og:image:height\" content=\"1400\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:site\" content=\"@CyberArk\" \/>\n<meta name=\"twitter:label1\" content=\"Gesch\u00e4tzte Lesezeit\" \/>\n\t<meta name=\"twitter:data1\" content=\"1 Minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.cyberark.com\/de\/podcasts\/ep-16-beware-of-stolen-cookies-for-mfa-bypass\/\",\"url\":\"https:\/\/www.cyberark.com\/de\/podcasts\/ep-16-beware-of-stolen-cookies-for-mfa-bypass\/\",\"name\":\"EP 16 - Beware of Stolen Cookies for MFA Bypass | CyberArk\",\"isPartOf\":{\"@id\":\"https:\/\/www.cyberark.com\/de\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.cyberark.com\/de\/podcasts\/ep-16-beware-of-stolen-cookies-for-mfa-bypass\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.cyberark.com\/de\/podcasts\/ep-16-beware-of-stolen-cookies-for-mfa-bypass\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.cyberark.com\/wp-content\/uploads\/2022\/12\/cnR3b3JrLmpwZw-3.jpg\",\"datePublished\":\"2022-12-06T16:58:00+00:00\",\"dateModified\":\"2026-05-25T05:36:34+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.cyberark.com\/de\/podcasts\/ep-16-beware-of-stolen-cookies-for-mfa-bypass\/#breadcrumb\"},\"inLanguage\":\"de-DE\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.cyberark.com\/de\/podcasts\/ep-16-beware-of-stolen-cookies-for-mfa-bypass\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"de-DE\",\"@id\":\"https:\/\/www.cyberark.com\/de\/podcasts\/ep-16-beware-of-stolen-cookies-for-mfa-bypass\/#primaryimage\",\"url\":\"https:\/\/www.cyberark.com\/wp-content\/uploads\/2022\/12\/cnR3b3JrLmpwZw-3.jpg\",\"contentUrl\":\"https:\/\/www.cyberark.com\/wp-content\/uploads\/2022\/12\/cnR3b3JrLmpwZw-3.jpg\",\"width\":1400,\"height\":1400},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.cyberark.com\/de\/podcasts\/ep-16-beware-of-stolen-cookies-for-mfa-bypass\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.cyberark.com\/de\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"EP 16 &#8211; Beware of Stolen Cookies for MFA Bypass\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.cyberark.com\/de\/#website\",\"url\":\"https:\/\/www.cyberark.com\/de\/\",\"name\":\"CyberArk\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\/\/www.cyberark.com\/de\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.cyberark.com\/de\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"de-DE\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.cyberark.com\/de\/#organization\",\"name\":\"CyberArk Software\",\"url\":\"https:\/\/www.cyberark.com\/de\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"de-DE\",\"@id\":\"https:\/\/www.cyberark.com\/de\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.cyberark.com\/wp-content\/uploads\/2021\/02\/cyberark-logo-dark.svg\",\"contentUrl\":\"https:\/\/www.cyberark.com\/wp-content\/uploads\/2021\/02\/cyberark-logo-dark.svg\",\"width\":\"1024\",\"height\":\"1024\",\"caption\":\"CyberArk Software\"},\"image\":{\"@id\":\"https:\/\/www.cyberark.com\/de\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/CyberArk\/\",\"https:\/\/x.com\/CyberArk\",\"https:\/\/www.linkedin.com\/company\/cyber-ark-software\/\"]}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"EP 16 - Beware of Stolen Cookies for MFA Bypass | CyberArk","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.cyberark.com\/de\/podcasts\/ep-16-beware-of-stolen-cookies-for-mfa-bypass\/","og_locale":"de_DE","og_type":"article","og_title":"EP 16 - Beware of Stolen Cookies for MFA Bypass","og_description":"Today&#8217;s episode is a bit of a year-end cybersecurity fortune cookie. Its focus is an attack trend that&#8217;s surged in 2022: Cookie hijacking (aka stolen cookies). Session cookies, that is. And it\u2019s an attack trend...","og_url":"https:\/\/www.cyberark.com\/de\/podcasts\/ep-16-beware-of-stolen-cookies-for-mfa-bypass\/","og_site_name":"CyberArk","article_publisher":"https:\/\/www.facebook.com\/CyberArk\/","article_modified_time":"2026-05-25T05:36:34+00:00","og_image":[{"width":1400,"height":1400,"url":"https:\/\/www.cyberark.com\/wp-content\/uploads\/2022\/12\/cnR3b3JrLmpwZw-3.jpg","type":"image\/jpeg"}],"twitter_card":"summary_large_image","twitter_site":"@CyberArk","twitter_misc":{"Gesch\u00e4tzte Lesezeit":"1 Minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.cyberark.com\/de\/podcasts\/ep-16-beware-of-stolen-cookies-for-mfa-bypass\/","url":"https:\/\/www.cyberark.com\/de\/podcasts\/ep-16-beware-of-stolen-cookies-for-mfa-bypass\/","name":"EP 16 - Beware of Stolen Cookies for MFA Bypass | CyberArk","isPartOf":{"@id":"https:\/\/www.cyberark.com\/de\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.cyberark.com\/de\/podcasts\/ep-16-beware-of-stolen-cookies-for-mfa-bypass\/#primaryimage"},"image":{"@id":"https:\/\/www.cyberark.com\/de\/podcasts\/ep-16-beware-of-stolen-cookies-for-mfa-bypass\/#primaryimage"},"thumbnailUrl":"https:\/\/www.cyberark.com\/wp-content\/uploads\/2022\/12\/cnR3b3JrLmpwZw-3.jpg","datePublished":"2022-12-06T16:58:00+00:00","dateModified":"2026-05-25T05:36:34+00:00","breadcrumb":{"@id":"https:\/\/www.cyberark.com\/de\/podcasts\/ep-16-beware-of-stolen-cookies-for-mfa-bypass\/#breadcrumb"},"inLanguage":"de-DE","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.cyberark.com\/de\/podcasts\/ep-16-beware-of-stolen-cookies-for-mfa-bypass\/"]}]},{"@type":"ImageObject","inLanguage":"de-DE","@id":"https:\/\/www.cyberark.com\/de\/podcasts\/ep-16-beware-of-stolen-cookies-for-mfa-bypass\/#primaryimage","url":"https:\/\/www.cyberark.com\/wp-content\/uploads\/2022\/12\/cnR3b3JrLmpwZw-3.jpg","contentUrl":"https:\/\/www.cyberark.com\/wp-content\/uploads\/2022\/12\/cnR3b3JrLmpwZw-3.jpg","width":1400,"height":1400},{"@type":"BreadcrumbList","@id":"https:\/\/www.cyberark.com\/de\/podcasts\/ep-16-beware-of-stolen-cookies-for-mfa-bypass\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.cyberark.com\/de\/"},{"@type":"ListItem","position":2,"name":"EP 16 &#8211; Beware of Stolen Cookies for MFA Bypass"}]},{"@type":"WebSite","@id":"https:\/\/www.cyberark.com\/de\/#website","url":"https:\/\/www.cyberark.com\/de\/","name":"CyberArk","description":"","publisher":{"@id":"https:\/\/www.cyberark.com\/de\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.cyberark.com\/de\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"de-DE"},{"@type":"Organization","@id":"https:\/\/www.cyberark.com\/de\/#organization","name":"CyberArk Software","url":"https:\/\/www.cyberark.com\/de\/","logo":{"@type":"ImageObject","inLanguage":"de-DE","@id":"https:\/\/www.cyberark.com\/de\/#\/schema\/logo\/image\/","url":"https:\/\/www.cyberark.com\/wp-content\/uploads\/2021\/02\/cyberark-logo-dark.svg","contentUrl":"https:\/\/www.cyberark.com\/wp-content\/uploads\/2021\/02\/cyberark-logo-dark.svg","width":"1024","height":"1024","caption":"CyberArk Software"},"image":{"@id":"https:\/\/www.cyberark.com\/de\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/CyberArk\/","https:\/\/x.com\/CyberArk","https:\/\/www.linkedin.com\/company\/cyber-ark-software\/"]}]}},"_links":{"self":[{"href":"https:\/\/www.cyberark.com\/de\/wp-json\/wp\/v2\/podcast\/143268","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.cyberark.com\/de\/wp-json\/wp\/v2\/podcast"}],"about":[{"href":"https:\/\/www.cyberark.com\/de\/wp-json\/wp\/v2\/types\/podcast"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.cyberark.com\/de\/wp-json\/wp\/v2\/media\/214314"}],"wp:attachment":[{"href":"https:\/\/www.cyberark.com\/de\/wp-json\/wp\/v2\/media?parent=143268"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}