56 percent of security incidents caused by lack of MFA

Valid account credentials -- with no MFA in place to protect the organization should they bemisused -- are still by far and away the biggest stumbling block for organizations investigatedby the Rapid7 IR team, occurring in 56 percent of all incidents in the first quarter of 2025. Exposed RDP services account for six percent of incidents as the initial access vector (IAV) and were abused by attackers more generally in 44 percent of incidents. In addition 44 percent of investigated incidents in the first three months of this year have involved ransomware, with the majority involving vulnerability exploits, and/or MFA… [Continue Reading]