Hackers launched 81 million login attempts against Microsoft 365, exploiting Azure CLI and MFA configuration gaps to ...
The attack abused misconfigured conditional access policies to bypass multi-factor authentication protections.
Attackers behind a password-spraying campaign targeting Microsoft Office 365 accounts have amassed dozens of victims by abusing a deprecated feature in OAuth 2.0 to ...
An aggressive password-spraying campaign targeting Microsoft 365 environments generated more than 81 million login attempts over a two-week period.
Starting in October, all Microsoft Azure customers will be required to have multifactor authentication (MFA) enabled on their accounts, Microsoft said. From Microsoft ...
Microsoft added that external MFA solutions and federated identity providers will continue to be supported and will meet the MFA requirement if they are configured to send an MFA claim. The ...
Time’s running out! Microsoft mandatory MFA enforcement is bulldozing its way into organizations across the globe, and the October 2025 deadline cannot be compromised. The thing is, unlike in earlier ...
What happened A massive password spray campaign is targeting Microsoft 365 environments through Azure CLI authentication. Huntress warned that threat actors made more than 81 million login attempts ...
Starting in October, Microsoft will require multifactor authentication (MFA) for all Azure sign-ins. Microsoft said the policy change is in line with its current focus on enhancing digital security ...
Microsoft last week announced that, starting in July, all users of Azure services will be required to set up and use multifactor authentication (MFA) when logging in. The company said that the rollout ...
Microsoft warned Entra global admins on Thursday to enable multi-factor authentication (MFA) for their tenants until October 15 to ensure users don't lose access to admin portals. This is part of ...