Federal CISO doubles down on phishing-resistant MFA following Lapsus$ review

A global cyberattack review by the Cyber Safety Review Board highlighted weak identity management technology is leaving data and networks vulnerable. Its report showed failures in using SMS and voice calls for multifactor authentication (MFA), and recommended an immediate transition away from text message and voice MFA. It called for an adoption of phishing-resistant MFA and a secure authentication roadmap to transition towards a world without passwords.