Should We Be Rethinking Multifactor Authentication?

AP
Aaron Painter
Oct 3, 2022
Learn more

KEY POINTS:

KEY POINTS:

  • Attacks exploiting multifactor authentication are on the rise.
  • Using MFA fatigue, attackers successfully breached Uber and Okta.
  • Security measures like authentication with biometrics and passwordless logins mitigate risk.

Power in Passwordless: Rethinking Multifactor Authentication After Increase in Attacks

It’s easy to imagine – your work email prompts a sign-in approval on your phone before you have access. It seems secure, right? One day, you get a prompt while off work and are not logged in to your email. You deny it. It comes up again and again. Each time, you’re careful to deny the request. Let’s say the notifications continue – relentlessly. In this attack, it’s common for users to become careless and accidentally give attackers an opening. The technique is called MFA fatigue or prompt bombing (Tech Target), and there’s been an influx of these attacks.

“Professionals are abuzz on one topic – the failure of multifactor authentication or MFA, as it is commonly known,” said Aaron Painter, CEO, Nametag. MFA has been a part of directives and advice in improving security for digital account access for the last few years. “Recent security breaches at a host of companies, most recently at Uber, have pointed to the rise of what’s known as MFA fatigue,” said Painter.

There are a handful of security measures available to mitigate these attacks. Consider a safety net that locks accounts with multiple attempts within a short time. This measure prevents users from experiencing fatigue. Alternatively, professionals suggest one-time passwords. This step is a higher assurance of factors. “It turns out that adding more factors of authentication to passwords isn’t the right answer. Perhaps the solution is that we need better factors,” said Painter.

Microsoft recommends passwordless solutions, which effectively defend against this and more advanced adversary-in-the-middle attacks (Bleeping Computer). Another source, TechTarget, also suggests adopting a passwordless solution. “Passwordless authentication removes passwords from the process, which can drastically reduce risk.” Other passwordless solutions use biometrics for authentication. Apple and Google’s Face ID exemplifies biometric confirmation. “Plus, passwordless authentication reduces friction and improves UX. It also increases the efficiency of IT and security operations, reducing the amount of time and effort spent handling password resets and account lockouts” (TechTarget).

“The recent Lapsis attack and other critical vulnerabilities like those of Print Nightmare have brought warnings even from the likes of the FBI regarding state-sponsored threat actors using exploits like multifactor authentication,” said Painter. Organizations of all sizes are vulnerable to these attacks, including Okta and Uber (CSO). Like most security measures, cyber attackers eventually find a way around them. Pivoting measures to the latest technology and tactics keeps your company safe and secure.

 

Follow us on social media for the latest updates in B2B!

Image

Latest

Rothman Index
The Origin Story of the Rothman Index – Episode 5
January 8, 2026

Hospitals collect enormous amounts of clinical data, yet preventable patient decline remains a persistent challenge. Over the past two decades, hospitals have invested heavily in early warning scores and rapid response infrastructure, but translating data into timely, meaningful action has proven difficult. As clinicians contend with alert fatigue and increasing documentation burden, a more…

Read More
Rothman Index
My Mother and the Story of the Genesis of the Rothman Index – Episode 4
January 8, 2026

Healthcare generates enormous volumes of clinical data, yet making sense of that information in real time remains a challenge. Subtle changes in vitals, labs, and nursing assessments often precede serious events, but when that information is fragmented across the medical record, emerging risks can go unnoticed. The central challenge facing hospitals today is not…

Read More
home
Delivering Moments That Matter: The Art of Joy, Memory, and Meaning at Anthropologie Home
January 8, 2026

These days, ‘home’ means more than just four walls. It’s where people reset, gather, and express who they are—raising the bar for what they expect from the brands that help shape those spaces. Consumers are no longer just buying décor—they’re investing in meaning, memory, and moments that last. Research continues to show that people…

Read More
Texas energy
Small Margins, Big Risks: How Fraud Hurts Texas Energy Retailers
January 6, 2026

Fraud has quietly become one of the most existential threats in Texas’s deregulated retail electricity market—because the business runs on razor-thin margins and delayed payment. Under the non-POR system overseen by the Electric Reliability Council of Texas (ERCOT), retail energy providers assume the full risk of nonpayment. With profit margins often measured in just a…

Read More
Related
Texas energy
Software & Technology
Small Margins, Big Risks: How Fraud Hurts Texas Energy Retailers
January 6, 2026
broadband as a service
Healthcare
2025 Broadband Year in Review, Part 1
December 23, 2025

In this episode of Wavelengths, the Amphenol Broadband Solutions podcast, host Daniel Litwin sits down with Alex Rozek, Founder and CEO of Mac Mountain, to unpack the defining shifts that shaped the broadband industry in 2025 and what they signal for the years ahead.  As the industry approaches the end of 2025, broadband looks markedly different…

Read More
Hiring
Healthcare
Hiring Rewired: Human Intelligence in the AI-Driven Job Market
December 16, 2025

As artificial intelligence continues to reshape recruiting—from resume screening and job descriptions to candidate sourcing and interview workflows—the hiring process has become faster, more automated, and increasingly complex. According to the World Economic Forum, approximately 88% of companies now use some form of AI to filter or rank job applications, signaling how deeply embedded automation…

Read More