Redmond Magazine

Targeting Microsoft ADFS: How Phishing Campaigns Bypass Multi-Factor Authentication to Enable Account Takeover

A sophisticated phishing campaign is targeting organizations that rely on Microsoft’s Active Directory Federation Services (ADFS), using spoofed login pages to harvest credentials and bypass ...
Threat Post

Microsoft Flaw Allows Full Multi-Factor Authentication Bypass

This is similar to taking a room key for a building and turning it into a skeleton key that works on every door in the building. A vulnerability in Microsoft’s Active Directory Federation Services ...
TechRepublic

Unphishable mobile MFA through hardware keys

With Azure AD and FIDO security keys, you can make MFA more secure and avoid having to provision certificates on everyone’s phones. Image: weerapat1003/Adobe Stock Passwords are a mess, MFA can be ...
Computer Weekly

Businesses urged to patch Microsoft flaw allowing MFA bypass

A vulnerability in Microsoft’s Active Directory Federation Services (ADFS) could allow attackers to bypass multifactor authentication (MFA) systems, researchers at identity management firm Okta have ...
Bleeping Computer

Latest MFA Push Notification news

A help desk phishing campaign targets an organization's Microsoft Active Directory Federation Services (ADFS) using spoofed login pages to steal credentials and bypass multi-factor authentication (MFA ...
techtimes

Next-Level Protection for Windows Infrastructure: Exploring Protectimus 2FA for Windows Domain

Many companies rely on Microsoft products, including Windows, Active Directory, ADFS, OWA, and RDP, in their business processes. That's why the importance of two-factor authentication (2FA or MFA) for ...