Our colleague’s account was hacked last week, and hundreds of virtual machines (VMs) were created within 30 minutes. Fortunately, he had set a consumption limit, so his subscription account (Subscription) was immediately deactivated Yes, but I didn’t receive the notification that the subscription account was deactivated until late at night the next day. If there is no spending limit set, it will be really miserable! What my colleagues wondered was that he had set up multi-factor authentication (MFA) (Multi-Factor Authentication) authentication methods (Authentication methods), how could a hacker still log in to Azure Portal with his account password from Uzbekistan ? In this article, I will talk about my research experience on Microsoft 365 / Azure AD in MFA in the past two days, which is very important! 
… continue reading …
This article is transferred from http://blog.miniasp.com/post/2022/12/27/Azure-Active-Directory-Enable-MFA-Correctly
This site is only for collection, and the copyright belongs to the original author.