Lapsus$ and SolarWinds hackers both use the same old trick to bypass MFA – Ars Technica

https://arstechnica.com/information-technology/2022/03/lapsus-and-solar-winds-hackers-both-use-the-same-old-trick-to-bypass-mfa/

The longer, the better.

https://digg.com/technology/link/how-long-it-would-take-a-hacker-to-brute-force-your-password-in-2022-ranked-8KVv28GW6H