Atlas Lion Campaign Exploits Device Enrollment and MFA for Persistence