Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Microsoft 365 admin center MFA enforcement

Advisory/Mitigation
First reported
Last updated
Happening score
H score 34
1 unique sources, 1 articles

Summary

Hide ▲

Microsoft will enforce multi-factor authentication (MFA) for Microsoft 365 admin center sign-ins starting February 9, 2026, blocking administrators who have not enabled MFA. The policy applies to portal.office.com/adminportal/home, admin.cloud.microsoft, and admin.microsoft.com. Microsoft says the change will reduce account compromise risk and help stop phishing and credential stuffing attacks. Organizations that miss the deadline may face access disruptions to administration and management functions.

Related Happenings

Azure Backup for AKS Trusted Access permission tightening

Security Patch Release
First: 16.05.2026 23:55 Last: 16.05.2026 23:55 Sources 1

About this happening: **Microsoft** appears to have silently tightened **Azure Backup for AKS**, closing a **Trusted Access** authorization path that could let a low-privileged role reach **cluster-adm...

Open Happening

KongTuke Microsoft Teams initial access campaign

Campaign
First: 14.05.2026 15:12 Last: 14.05.2026 15:12 Sources 1

About this happening: The **KongTuke** campaign now uses **Microsoft Teams** social engineering to gain persistent access to **corporate networks**, shortening initial compromise to **under five minute...

Open Happening

Microsoft Windows 365 Office installation disruption

Service Disruption
First: 13.05.2026 14:53 Last: 13.05.2026 14:53 Sources 1

About this happening: The **Windows 365** service update has introduced a **configuration change** that is blocking **Office downloads and installs** for some customers, disrupting access on cloud PCs....

Open Happening

Microsoft Windows Hardware Program suspended-account reinstatement advisory

Advisory/Mitigation
First: 14.04.2026 18:53 Last: 14.04.2026 18:53 Sources 1

About this happening: **Microsoft** introduced a temporary fast-track path to reinstate suspended **Windows Hardware Program** accounts, reducing delays for developers blocked from publishing **Windows...

Open Happening

Microsoft 365 mailbox-rule abuse rises across breached accounts in Q4 2025

Target Trend
First: 13.04.2026 18:00 Last: 13.04.2026 18:00 Sources 1

About this happening: In **Q4 2025**, about **10%** of breached **Microsoft 365** accounts had malicious mailbox rules created within seconds of compromise, increasing **persistence**, **data theft**,...

Open Happening

Timeline

  1. 08.01.2026 14:10 2 articles · 4mo ago

    Microsoft announces MFA enforcement for Microsoft 365 admin center

    Initial Disclosure

    Microsoft announced that it will enforce multi-factor authentication (MFA) for all Microsoft 365 admin center sign-ins starting February 9, 2026, blocking administrators without MFA from portal.office.com/adminportal/home, admin.cloud.microsoft, and admin.microsoft.com. Microsoft said the change is meant to reduce account compromise risk and prevent unauthorized access to Microsoft 365 administrative functions.

    Show sources
    Open in new tab
  2. 08.01.2026 14:10 1 articles · 4mo ago

    MFA enforcement goes live for Microsoft 365 admin center

    Mitigation Patch Update

    Microsoft begins enforcing MFA for Microsoft 365 admin center sign-ins on February 9, 2026, requiring MFA for all users and blocking sign-ins without MFA on portal.office.com/adminportal/home, admin.cloud.microsoft, and admin.microsoft.com. Organizations that have not enabled MFA before the deadline face access disruptions to Microsoft 365 administrative access.

    Show sources
    Open in new tab