Microsoft accounts are under attack — here’s what you do.
has issued a stark Microsoft warning given the continual “exploitation of vulnerabilities.” The agency’s advice is aimed at admins running on-premise Microsoft setups, but includes critical guidance for users as well.
This follows Microsoft’s own warning for users, as hackers continue to gain access to unsecured accounts. The NSA advisory urges organizations with on-premise Exchange setups to adopt its list of best practices. Whilst extensive, it boils down to fast patching, retiring defunct servers, restricting admin access and enabling multi-factor authentication for accounts. Put simply — stop hackers breaking in or logging in to accounts and networks., provides a better, all-in-one guide than is available from Microsoft itself. The frustration will be that nothing here is new or revolutionary. But despite a frightening rise in ransomware and other attacks, adherence remains patchy.that “multi-factor authentication is widely recognized as one, if not the most, important preventative security controls available today.” But despite this, “it is notoriously difficult to deploy and many organizations, small and large, still have not done so even if they recognize the value.”that “even when attackers possess valid usernames and passwords, multi-factor authentication blocks access in over 99% of cases.” Just as with NSA’s persistent, repeated advice, this Microsoft has famously committed to pushing its billion-plus account holders to delete passwords completely and to adopt passkeys instead. This is an easy-to-use equivalent to the hardware based authentication keys that may be provided by your organization. These options link account security to hardware security. A passkey does so by restricting usage to a device you’re logged into, your phone, PC or tablet. But despite its push to delete passwords, Microsoft is not making as much progress as expected.latest passkey report lauds Google as the class-leader. “Google passkey authentications exploded by 352% over the past year,” following the company’s decision in 2023 “to make passkeys the default login option for personal Google Accounts.” While Google’s move “effectively exposed hundreds of millions of users to passwordless authentication, creating the largest real-world deployment of passkeys to date,” Microsoft is nowhere close to this level of adoption yet despite a similar decision.According to Dashlane, “while not a member of the top 20 most popular passkey domains,” Microsoft is one of the “fastest-growing passkey domains.” Its commitment to passwordless security has driven “120% growth in passkey authentications.” The fact it so badly lags Google’s personal account adoption highlights the complexity when MFA falls to organizations and not individuals. Thus this latest NSA warning. NSA says attacks on Microsoft accounts “remain persistent,” with “Exchange environments continuously targeted for compromise and should be considered under imminent threat.” If you don’t have MFA at work, ask why. While the primary threat is to the organization, it affects you as well. You do not want to find your account the initial entry point for a ransomware or other attack,
Nsa Microsoft Nsa Iphone Nsa Texting Nsa Hacker Nsa Pc Nsa Smartphone Nsa Reboot
United States Latest News, United States Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
Trump Admin Warns Releasing SNAP Funds Would Be ‘Disastrous’The Agriculture Department warns of nationwide chaos if reserves are tapped.
Read more »
Microsoft Claims It Will Double Its Data Center Footprint in Two YearsMicrosoft's CEO, Satya Nadella, told investors that the company plans to double its data center footprint over the next two years.
Read more »
PayPal Partners with OpenAI to Expand Commerce in ChatGPT, Microsoft Backs OpenAI's PBC PlanPayPal and OpenAI are partnering to integrate payments and commerce within ChatGPT, allowing users to pay with PayPal. Microsoft has also signed a new agreement backing OpenAI's plan to form a public benefit corporation (PBC) and restructure its finances, impacting Microsoft's ownership stake and exclusive rights related to OpenAI's intellectual property.
Read more »
Meta, Microsoft stock sell-offs show investor exhaustion around AI spendingBusiness Insider tells the global tech, finance, stock market, media, economy, lifestyle, real estate, AI and innovative stories you want to know.
Read more »
Microsoft Stock Sinks on AI Spending — Yup, You Heard That RightMarket Analysis by covering: Microsoft Corporation, Amazon.com Inc. Read 's Market Analysis on Investing.com
Read more »
Meta, Microsoft shares plunge as investors fear AI spending is overhypedToday's Business Headlines 10/30/25
Read more »