The good intention:

Microsoft will implement mandatory multi-factor authentication (MFA) for all Azure services starting October 2024. This move aims - of course - to enhance security by ensuring that users verify their identity through multiple methods before accessing services. The requirement will apply to all Azure users, including those with existing accounts.

Who is impacted?

Required MFA for all Azure users will be rolled out in phases.

• Mandatory MFA will be turned on for Azure portal, Microsoft Entrata admin center, and Intune admin center.
• Organizations with complex environments or facing technical barriers to adopting MFA can request additional time.
• Mandatory MFA will not be required for Azure Command Line Interface, Azure PowerShell, Azure mobile app, and infrastructure-as-code tools until early 2025.

Organizations can choose between Microsoft Authenticator, FIDO2 security keys, certificate-based authentication, and passkeys. SMS or voice forms of MFA will also be acceptable.

Extra note:

MS stated: "MFA can block more than 99.2% of account compromise attacks".
Regardless this stats. One more step toward best pratices, the better, we agree. We know that the implementation and adoption at scale on different companies context is less than obvious.
this issue is also linked to a commercial issue and a brand message... 2FA and MFA are not a new recommendation, and should be mandatory since a while.

The bad news:

Not disclosed here, unknown yet :D. Still that even this approach is more than welcome, we will likely see some nice exceptions in the next X months/1 year. More on MFA exploits soon.

Credits:
MS Azure blog: announcing-mandatory-multi-factor-authentication-for-azure-sign-in