THREATOPS
THREAT OPSThreat News › Conditional Access Misconfigurations Exposed 55 Orgs with MFA On

Conditional Access Misconfigurations Exposed 55 Orgs with MFA On

lowhuntressPublished 2026-07-09

Two Microsoft 365 attacks got through Conditional Access policies that seemed fully configured. Learn what went wrong and how Huntress Managed ISPM catches these gaps first.

MITRE ATT&CK techniques

Original source: https://www.huntress.com/blog/conditional-access-misconfigurations