HIGHAdvisoryJul 02, 2026
Action required
Audit MFA policies for bypass weaknesses. Implement conditional access rules to block unusual login patterns and MFA bombing attempts. Search logs for social engineering indicators: credential reuse across accounts, unusual after-hours access, and rapid MFA challenges from single sources.
Linked articles