"MFA is the single most effective control against credential-based attacks, and the scheme has needed to stop tolerating its absence for a long time."
"A train operating company in the South East could not deploy MFA due to concerns that it would introduce delays affecting train operations and safety."
"A nationally known charity faces hurdles with MFA implementation because of the cost and management overhead of enrolling volunteers who may not have personal phones."
Cyber Essentials v3.3 mandates multi-factor authentication (MFA) as a pass-or-fail requirement starting 27 April. Organizations failing to enable MFA will not receive partial credit. MFA is recognized as a crucial defense against credential-based attacks. However, some organizations, like a train company and a charity, face challenges in implementing MFA due to operational constraints and volunteer management issues. These organizations may struggle to comply with the new requirements, highlighting potential implementation problems despite the policy's intent to enhance security.
#cyber-essentials #multi-factor-authentication #cybersecurity #credential-based-attacks #implementation-challenges
Read at ComputerWeekly.com
Unable to calculate read time
Collection
[
|
...
]