SECURITYTHE REGISTER
Security boss thought MFA would be too much security
A senior director at a cybersecurity company, who was allegedly its COO, overreacted to a multi-factor authentication (MFA) rollout for Microsoft 365, falsely claiming it crippled an invoicing system. The actual issue was a buggy invoicing software, but the director demanded an immediate rollback, resulting in reduced security. The incident highlighted poor decision-making despite the team's successful implementation.
Mentioned
Related Signal
Adjacent reporting
- Kelp claims that LayerZero approved the setup it blamed for $292 million bridge hack
- FBI cyber boss: China's hacker-for-hire ecosystem 'out of control'
- CISA chief frets about open-source vulnerabilities, delayed security improvements
- Another customer of troubled startup Delve suffered a big security incident