John "Lt" Sciandra vCISO, CISSP, CMMC Lead CCA/Instructor on LinkedIn: Microsoft Azure MFA Flaw Allowed Easy Access Bypass

John "Lt" Sciandra vCISO, CISSP, CMMC Lead CCA/Instructor’s Post

John "Lt" Sciandra vCISO, CISSP, CMMC Lead CCA/Instructor

Ask me how to setup your cybersecurity program. Yo hablo Español. Ich spreche Deutsch.

2d Edited

All IT admins and system owners should take note of this MFA bypass attack. Oasis discovered it and here is an easy read by Alessandro Mascallino at Information Security Magazine. Not sure how CMMC assesors should consider this. One the one hand passkeys are more secure, yet the letter of the law calls for MFA. Many questions here about the speed and flexibility of the CMMC framework to be responsive to change. Sadly passkeys are still in early adoption. #CW #CMMC #cybersecurity #NIST #ceomindset

Microsoft Azure MFA Flaw Allowed Easy Access Bypass

infosecurity-magazine.com

To view or add a comment, sign in

John "Lt" Sciandra vCISO, CISSP, CMMC Lead CCA/Instructor’s Post

Microsoft Azure MFA Flaw Allowed Easy Access Bypass

infosecurity-magazine.com

More from this author

Proposal Writing Considerations for Today

How to Get Started with DFARS and CMMC Cybersecurity

What about Geoblocking?

Explore topics