Microsoft 365 accounts are a treasure trove for cybercriminals looking for sensitive organization data. 97 percent of all total Microsoft 365 users do not use multi-factor authentication. Up to 78 percent of Microsoft 365 administrators do not have MFA security measures enabled. Security issues and attacks leveraging Microsoft 365 are rampant, according to CoreView Research, a report by the company released last week. The report sheds a grim light on the security issues inherent with the implementation of Microsoft s subscription service, which launched in 2017.
Source: https://threatpost.com/microsoft-365-admins-mfa/160592/