Exploiting stolen session cookies to bypass multi-factor authentication (MFA) Exploiting stolen session cookies to bypass multi-factor authentication (MFA) – Help Net Security