Unauthorized use of credentials accounted for 29% of all attacks observed by X-Force IRIS in 2019. Employing MFA on all remote access points can significantly decrease the likelihood of an attacker successfully using stolen credentials to compromise a network. In other cases, implementation errors open the door for attackers who would otherwise be stopped by MFA. This blog will explore some of the methods we have observed attackers using to sidestep MFA controls or take advantage of MFA misconfiguration. It will also consider some actions organizations can take to more effectively implement MFA and up their game against this malicious activity.”]
Source: https://securityintelligence.com/posts/multifactor-authentication-the-next-battleground/