Skip to the main content.
TALK TO AN EXPERT
TALK TO AN EXPERT

ABT Blog

Read about mortgage technology solutions topics

MFA Compliance

Microsoft Authenticator information disclosure vulnerability illustration with the Microsoft 4-square logo and a CVSS 7.4 High badge for a financial institution security audience.

11 min read

CVE-2026-41615: Microsoft Authenticator Information Disclosure: What Financial Institutions Should Do Now

Justin Kirsch: Wed, May 27, 2026

In This Article What the patch actually fixes Why financial institutions should treat this as a tier-1 patch event The three-control playbook for...

microsoft office 365 multi-factor authentication cybersecurity microsoft MFA Compliance
Read More
Phishing-resistant MFA for financial institutions: hardware-backed FIDO2 security keys, passkeys, and Microsoft Entra ID Conditional Access protecting against AiTM, credential theft, and phishing attacks

16 min read

Phishing-Resistant MFA for Financial Institutions: Why FFIEC, NCUA, and OCC Examiners Now Expect FIDO2, Passkeys, and Hardware Keys

Justin Kirsch: Sat, May 02, 2026

In This Article What "Phishing-Resistant" Authentication Actually Means Why SMS, Push, and One-Time Codes No Longer Pass the Bar What FFIEC Examiners...

ABT financial data security phishing multi-factor authentication cybersecurity FFIEC microsoft MFA Compliance
Read More
VENOM PhaaS QR code AiTM phishing attack targeting financial institution executives

14 min read

VENOM PhaaS: MFA Bypass Targeting Financial Executives

Justin Kirsch: Sat, Apr 25, 2026

In This Article What Is VENOM? The QR Code That Email Security Cannot See The Attack Chain: From Inbox to Persistent Access Why Standard MFA Does Not...

ABT phishing MFA Compliance
Read More
Microsoft 365 device code phishing attack pathway showing token replay from Railway PaaS infrastructure to a compromised financial institution tenant

26 min read

M365 Device Code Phishing: MFA Is Being Bypassed at Scale

Justin Kirsch: Wed, Apr 15, 2026

Prefer to watch? Every security control did its job. The tokens still went to the attacker. Watch the 26-second Short, then the 10-minute walkthrough...

ABT microsoft office 365 phishing cybersecurity MFA Compliance Microsoft 365
Read More

13 min read

Best Practices for Configuring Microsoft 365 Email for Mortgage Offices

Justin Kirsch: Wed, Feb 11, 2026

In This Article The Microsoft 365 Email Baseline for Mortgage Offices A Configuration Checklist for FTC Safeguards and GLBA DLP, MFA, and Encryption:...

Compliance ABT EmailGuardian email security cybersecurity FFIEC mortgage industry GLBA FTC Safeguards Rule MFA Compliance Mortgage Cybersecurity Microsoft 365
Read More
Company
Platform
Resources
Connect
Talk to an Expert (888) 422-3400
Microsoft Solutions Partner
Cloud Solution Provider
Tier 1 Direct Partner Authority
SOC 2 Type II Defender Zero Trust GLBA / FTC Safeguards 750+ Institutions Purview Governance Copilot Governance
Terms of Service Privacy Policy Acceptable Use Policy Security and Responsible Disclosure
© 2026 Access Business Technologies. All rights reserved.