417 votesDan Stockman commented
I can't believe we don't have a simple fix for this and why are there not 10K+ comments here. We are trying to go with MFA for all but there are always holes.... I have clients being hacked by Russia, Brazil, etc... and nothing is being done. The shared Email accounts are the worst as we don't have MFA setup on those. I would think an alert should go to the company administrators if suddenly an account randomly has xx failed login attemps, or randomly an international IP attempted to login for the first time ever, or even as simple as a thousand outbound messages with exact same scam link are identified. We don't need advanced AI here.... just some simple programming I would think could easily fix this mess.