Seven Windows authentication paths bypass MFA protections, enabling credential attacks through AD, NTLM, Kerberos, RDP, SMB, and service accounts.

Europol, Microsoft, and cybersecurity companies announced the takedown of the widely used phishing-as-a-service platform Tycoon 2FA.

Microsoft released KB5077793 to fix Azure Virtual Desktop and Windows 365 authentication failures. January 2026 security update KB5073379 caused credential prompt failures across multiple Windows ...

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Cory Benfield discusses the evolution of ...

Microsoft has announced that Microsoft 365 users must enable multi-factor authentication (MFA) support by February 9th, otherwise they will not be able to log in to the service’s admin center.

When it comes to digital safety, setting up an extra layer of security for accounts is heavily recommended. The idea behind this approach, known as multi-factor authentication (MFA), is to ensure that ...

A new variation of the ClickFix attack dubbed 'ConsentFix' abuses the Azure CLI OAuth app to hijack Microsoft accounts without the need for a password or to bypass multi-factor authentication (MFA) ...

A technical issue in Microsoft Corp.’s Azure cloud platform today disrupted several online services operated by the tech giant and its customers. Starbucks Corp., Costco Wholescale Corp. and Capital ...

Microsoft Azure experienced simultaneous outages, disrupting access to websites, apps, and cloud-connected services across industries on Wednesday afternoon. The dual failure triggered widespread ...

Microsoft was hit with an outage affecting its Azure and 365 services hours before the company was scheduled to report quarterly results. "We are investigating an issue with the Azure Portal where ...