Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home News

Microsoft To Enforce MFA For Azure

September 1, 2025
Reading Time: 3 mins read
in News

In a significant move to enhance the security of its cloud platform, Microsoft has announced that it will begin enforcing multi-factor authentication (MFA) for all Azure resource management actions starting in October. This security enhancement, a core component of Microsoft’s broader Secure Future Initiative (SFI), is designed to provide a more robust defense against unauthorized access attempts and align with industry-wide best practices for identity protection. The gradual rollout across tenants worldwide will apply to all users and is a critical step in securing the Azure ecosystem.

The new enforcement will impact a range of tools used for managing Azure resources. Users will be required to enable MFA on their accounts when performing “Create, Update, or Delete” operations through the Azure CLI, Azure PowerShell, the Azure mobile app, Infrastructure as Code (IaC) tools, and REST API endpoints. This also includes scripts and automation that use user identities, which are often overlooked in security protocols. By extending the MFA requirement to these apects of resource management, Microsoft aims to close potential security gaps that could be exploited by malicious actors.

To ensure a smooth transition and avoid compatibility issues, Microsoft is advising users to update their tools to the latest versions. Specifically, users should upgrade Azure CLI to version 2.76 or later and Azure PowerShell to version 14.3 or later. This proactive measure will help ensure that the tools are ready to handle the new MFA requirements without causing disruptions to workflows. For organizations that require more time to prepare for compliance, global administrators can postpone the enforcement date until July 2026, offering a window to fully implement and test their security preparations.

This initiative is part of a series of security-focused announcements from Microsoft over the past year. In August 2024, the company urged Entra global admins to enable MFA for their tenants to prevent users from losing access to administrative portals. This was followed by a May 2024 announcement to enforce MFA for all users administering resources on Azure and a November 2024 rollout of Conditional Access policies for all admins. The consistent push for MFA demonstrates Microsoft’s commitment to making a more secure environment for all its customers.

The importance of this change is underscored by Microsoft’s own research, which highlights the effectiveness of MFA in preventing account compromise. A Microsoft study found that 99.99% of MFA-enabled accounts are resistant to hacking attempts, and MFA can reduce the risk of compromise by nearly 99%, even when an attacker has stolen credentials. The company’s Secure Future Initiative is a comprehensive, multi-year project to improve security, and its influence is even visible in other Microsoft-owned services, such as GitHub, which began enforcing two-factor authentication for all developers in January 2024.

Reference:

  • Microsoft To Enforce MFA For Azure Resource Management In October
Tags: Cyber NewsCyber News 2025Cyber threatsSeptember 2025
ADVERTISEMENT

Related Posts

Sitecore Exploit Chain Warning

China Salt Typhoon Long Global Hacking

September 2, 2025
Sitecore Exploit Chain Warning

Spain Cancels Huawei Contract

September 2, 2025
Sitecore Exploit Chain Warning

Ransomware Gang Takedown Fallout

September 2, 2025
Amazon Dismantles Russian APT29 Network

Amazon Dismantles Russian APT29 Network

September 1, 2025
Amazon Dismantles Russian APT29 Network

Apple May Remove SIM Card In iPhone 17

September 1, 2025
Salt Typhoon Hacking Linked To China

Russia Considers Google Meet Ban

August 28, 2025

Latest Alerts

High Risk SQLi In WordPress Plugin

AI Weaponized Nx Supply Chain Attack

Sitecore Exploit Chain Warning

Brokewell Android Malware In Fake Ads

North Korea APT37 Uses RokRAT In Phishing

New Zero Click Exploit Targets WhatsApp

Subscribe to our newsletter

    Latest Incidents

    Lotte Card Cyberattack Reported

    Von Der Leyen Plane GPS Jamming

    Zscaler Data Breach Exposes Info

    Google Warns Salesloft Breach Hit Accounts

    Fraudster Stole Millions From Baltimore

    MathWorks Confirms Cyberattack Data Stolen

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial