By https://www.facebook.com/thehackernews
Publication Date: 2026-02-23 08:05:00
Here’s what keeps me up at night. Not zero-days. Not sophisticated nation-state attacks. What worries me is the backlog.
Every MSP has one. The list of security configurations that need fixing. The policies have been sitting in “report only” mode since last year. The E5 features that clients are paying for but nobody’s turned on because it might break something. The app registrations with excessive permissions from three years ago that nobody’s audited. The conditional access policies that need updating but keep getting pushed to next quarter.
We all know this backlog exists. We tell ourselves we’ll get to it. But quarters turn into years, and that backlog just grows. Meanwhile, AI attackers don’t have a backlog. They have automation.
Most breaches in Microsoft 365 won’t start with a zero-day. They’ll start with a setting that’s been in “report only” for two years.
 |
| Example tenant: critical Conditional Access policies exist but are left in report mode rather than enforced |
