CSO Online

Your MFA isn’t broken — it’s being bypassed, and your employees can’t tell the difference

Hackers aren't "breaking" your MFA anymore — they’re just riding shotgun during your login to steal the session token right out from under you.
PCMag on MSN

Microsoft Authenticator

None ...
Dark Reading

Microsoft Warns of Rise in Stolen Cloud Tokens Used to Bypass MFA

Threat actors are stealing authentication tokens already verified by multifactor authentication (MFA) to breach organizations' systems. A new alert from Microsoft Detection and Response Team (DART), ...
SiliconANGLE

Whisper 2FA kit steals Microsoft 365 credentials and MFA tokens in real time

A new report released today by cloud cybersecurity firm Barracuda Networks Inc. details a rapidly evolving phishing-as-a-service kit dubbed Whisper 2FA that’s designed to steal Microsoft 365 ...
CSOonline

From MFA mandates to locked-down devices, Microsoft posts a year of SFI milestones at Ignite

During its Ignite conference on Tuesday, Microsoft shared a progress update on its Secure Future Initiative (SFI), introduced a year ago, which included significant measures such as enforcing ...
Que.com on MSN

Microsoft and Europol takedown Tycoon 2FA phishing platform

A major collaboration between Microsoft and Europol has disrupted a sophisticated cybercriminal operation known as Tycoon, a phishing platform designed ...
Bleeping Computer

Latest Multi-Factor Authentication news

Microsoft will start enforcing multi-factor authentication (MFA) for all users accessing the Microsoft 365 admin center starting next month. File-sharing platform ownCloud warned users today to enable ...
techtimes

Web Account Manager: The Foundational Enabler of Single Sign-On for Windows Applications within the Microsoft Identity Ecosystem

In today's rapidly evolving identity landscape, organizations are accelerating their adoption of cloud-first strategies (specifically by modernizing identity infrastructure through the adoption of ...