We have conducted an audit of users in DUO Bypass Mode. Bypass Mode creates a security risk since DUO is disabled. For a user that is not in Bypass Mode they will know immediately if there is unauthorized access to their account. For a user in Bypass Mode, the hack may continue for quite some time before anyone is aware there is a problem, potentially exposing firm and client data for an extended period of time.
Comment on this post