CISA & NSA are warning on ways security authentication can be worked around to compromise security access, especially for cloud-based applications.

NSA Releases Cybersecurity Advisory on Detecting Abuse of Authentication Mechanisms | CISA

AUTHENTICATION_MECHANISMS_CSA_U_OO_198854_20.PDF (defense.gov)

Advanced Persistent Threat Compromise of Government Agencies, Critical Infrastructure, and Private Sector Organizations | CISA

The National Security Agency (NSA) has released a cybersecurity advisory on detecting abuse of authentication mechanisms. This advisory describes tactics, techniques, and procedures used by malicious cyber actors to access protected data in the cloud and provides guidance on defending against and detecting such activity.  CISA encourages users and administrators to review the NSA cybersecurity advisory and CISA Activity Alert AA20-352A and take the appropriate mitigation actions.