Neowin

Microsoft has an update on Exchange Online Basic Auth removal for Office 365Microsoft has an update on Exchange Online Basic Auth removal for Office 365Microsoft has an update ...

Back in 2022, Microsoft announced the retirement of Basic Authentication as it was moving to modern OAuth 2.0 token-based authentication. The reason was simple, to move away from such simple ...
Forbes

Microsoft Password Spray And Pray Attack Targets Accounts Without 2FA

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Update, Feb. 27, 2025: This story, originally published Feb.
Dark Reading

Microsoft 365 Accounts Get Sprayed by Mega-Botnet

A botnet of more than 130,000 compromised devices is conducting a large-scale password-spray cyberattack, targeting Microsoft 365 accounts through a basic authentication feature. The attacks have been ...
ZDNet

Microsoft: 99.9% of compromised accounts did not use multi-factor authentication

Speaking at the RSA security conference last week, Microsoft engineers said that 99.9% of the compromised accounts they track every month don't use multi-factor authentication, a solution that stops ...