Attackers and red teams find multiple ways to bypass poorly deployed MFA in enterprise environments. CyberArk found at least four ways that attackers, including its own red teams, could circumvent MFA or at least greatly diminish its benefits. Attackers stole the private keys for single sign-on (SSO) infrastructure at many companies and then used those keys to bypass MFA checks. In addition, companies should audit their MFA infrastructure to identify the ways it could potentially be bypassed, says Shay Nahari.”]