Skip to content
MarketScale
‹ Back to IndustriesSoftware & Technology

Should We Be Rethinking Multifactor Authentication?

KEY POINTS: KEY POINTS: Attacks exploiting multifactor authentication are on the rise. Using MFA fatigue, attackers successfully breached Uber and Okta. Security measures like authentication with biometrics and passwordless logins mitigate risk. Power in Passwordless: Rethinking Multifactor Authentication After Increase in Attacks It’s easy to imagine – your work email prompts a sign-in approval on…

This story was produced through MarketScale. See how Software & Technology teams put it to work with Executive Thought Leadership.

By Aaron Painter ·
Share

Key takeaways

01

KEY POINTS: KEY POINTS: Attacks exploiting multifactor authentication are on the rise.

02

Using MFA fatigue, attackers successfully breached Uber and Okta.

03

Security measures like authentication with biometrics and passwordless logins mitigate risk.

KEY POINTS:

  • Attacks exploiting multifactor authentication are on the rise.
  • Using MFA fatigue, attackers successfully breached Uber and Okta.
  • Security measures like authentication with biometrics and passwordless logins mitigate risk.

Power in Passwordless: Rethinking Multifactor Authentication After Increase in Attacks

It’s easy to imagine – your work email prompts a sign-in approval on your phone before you have access. It seems secure, right? One day, you get a prompt while off work and are not logged in to your email. You deny it. It comes up again and again. Each time, you’re careful to deny the request. Let’s say the notifications continue – relentlessly. In this attack, it’s common for users to become careless and accidentally give attackers an opening. The technique is called MFA fatigue or prompt bombing (Tech Target), and there’s been an influx of these attacks.

“Professionals are abuzz on one topic – the failure of multifactor authentication or MFA, as it is commonly known,” said Aaron Painter, CEO, Nametag. MFA has been a part of directives and advice in improving security for digital account access for the last few years. “Recent security breaches at a host of companies, most recently at Uber, have pointed to the rise of what’s known as MFA fatigue,” said Painter.

There are a handful of security measures available to mitigate these attacks. Consider a safety net that locks accounts with multiple attempts within a short time. This measure prevents users from experiencing fatigue. Alternatively, professionals suggest one-time passwords. This step is a higher assurance of factors. “It turns out that adding more factors of authentication to passwords isn’t the right answer. Perhaps the solution is that we need better factors,” said Painter.

Microsoft recommends passwordless solutions, which effectively defend against this and more advanced adversary-in-the-middle attacks (Bleeping Computer). Another source, TechTarget, also suggests adopting a passwordless solution. “Passwordless authentication removes passwords from the process, which can drastically reduce risk.” Other passwordless solutions use biometrics for authentication. Apple and Google’s Face ID exemplifies biometric confirmation. “Plus, passwordless authentication reduces friction and improves UX. It also increases the efficiency of IT and security operations, reducing the amount of time and effort spent handling password resets and account lockouts” (TechTarget).

“The recent Lapsis attack and other critical vulnerabilities like those of Print Nightmare have brought warnings even from the likes of the FBI regarding state-sponsored threat actors using exploits like multifactor authentication,” said Painter. Organizations of all sizes are vulnerable to these attacks, including Okta and Uber (CSO). Like most security measures, cyber attackers eventually find a way around them. Pivoting measures to the latest technology and tactics keeps your company safe and secure.

About the author

Aaron Painter

Aaron Painter is the CEO of Nametag Inc., the world's first identity verification platform designed to safeguard accounts against impersonators and AI-generated deep fakes. Nametag has become the trusted choice for leading companies seeking to prevent fraud, reduce support costs, and eliminate the frustrations associated with account lockouts and high-value transaction authorizations. Driven by his personal experiences with online fraud and identity theft, Aaron assembled a team of security experts to create the next generation of account protection. Nametag's mission is to bring authenticity to the internet and enable users to build trusted relationships. Nametag believes that security should be centered around the user, and that user identity, like privacy, is a valuable asset that deserves protection. Aaron is a global leader, having lived and worked in six countries across four continents. He has authored a best-selling book titled LOYAL, in which he details his key to leadership: fostering a culture of listening. Aaron has codified and implemented this framework of listening in his businesses, which has led to success across the world.

Software & Technology: are you visible to AI?

Before they reach out, Software & Technology buyers ask AI engines which vendors to trust. See how AI describes your company today, and where competitors show up instead.

Free workspace

You just read one expert. Imagine publishing your whole team.

This article was produced through MarketScale. Create a free workspace and turn your own team's expertise into articles, video, and social posts. No credit card, no demo required.

NPS +73 · 1,000+ creators · 38+ countries

What you get, free

Your own MarketScale Studio workspace
One video edit a month, on us
AI writing, editing, and publishing tools
In-platform coaching to learn the system

More Software & Technology Insights

Nvidia's Next AI Rack Costs Nearly Double the Last One, and Memory Is Why. What Infrastructure Buyers Should Budget For.

Nvidia's Next AI Rack Costs Nearly Double the Last One, and Memory Is Why. What Infrastructure Buyers Should Budget For.

Nvidia's next-generation Vera Rubin rack will cost hyperscalers $7.8 million—nearly double the prior generation—with memory now accounting for 25-30% of total cost instead of 5-10%. This shift signals that AI infrastructure budgeting must focus on total system cost rather than GPU pricing alone.

  • 01Memory costs jumped 435% to roughly $2 million per rack due to increased LPDDR5X capacity and 3D NAND storage, making it a strategic budget variable across all technology purchases
  • 02GPU share of bill of materials fell from 63% to 51% while memory rose to 25-30%, requiring infrastructure planners to model AI spend on total system cost not accelerator count
  • 03Memory supply constraints and tight availability now warrant the same scheduling and planning attention as GPU allocation, with procurement structure able to move final pricing by $1+ million per rack

Jul 6, 2026

Gemini 3.5 Pro Is Still in Preview Entering the Second Week of July. Here's What Enterprise Teams Evaluating a Model Should Do About It.

Gemini 3.5 Pro Is Still in Preview Entering the Second Week of July. Here's What Enterprise Teams Evaluating a Model Should Do About It.

Google's Gemini 3.5 Pro remained in limited preview into July 2026 due to token efficiency and reasoning performance concerns, signaling that enterprises must now evaluate AI models on cost-per-task rather than raw specs. Enterprise teams should architect workflows around stable API contracts, assess models by total operating cost, and hedge roadmaps with generally available alternatives rather than wait for unconfirmed vendor timelines.

  • 01Token efficiency has become a procurement metric for enterprises, as operating cost per completed task now matters more than benchmark scores or context window size
  • 02Enterprise teams should build against API interfaces rather than specific models to enable seamless model swaps at general availability with minimal rework
  • 03Hedging model strategy with generally available alternatives protects project delivery timelines when a vendor's release date remains uncertain

Jul 6, 2026

AI cost reality bites: Uber, Starbucks, and the enterprise ROI reckoning

AI cost reality bites: Uber, Starbucks, and the enterprise ROI reckoning

Uber and Starbucks faced significant challenges with their AI investments. Uber exhausted its entire 2026 AI budget within just four months, and Starbucks decided to discontinue its AI inventory system after only nine months. These experiences highlight the growing demand for verified return on investment in enterprise AI projects.

  • 01Uber used up its 2026 AI budget in four months.
  • 02Starbucks discontinued its AI inventory system after nine months.
  • 03Enterprises are now focused on confirming AI's ROI.

Jul 5, 2026

Explore More Software & Technology Insights

Read more expert perspectives from across Software & Technology.

Browse Software & Technology Hub

About the Expert

Aaron Painter is the CEO of Nametag Inc., the world's first identity verification platform designed to safeguard accounts against impersonators and AI-generated deep fakes. Nametag has become the trusted choice for leading companies seeking to prevent fraud, reduce support costs, and eliminate the frustrations associated with account lockouts and high-value transaction authorizations. Driven by his personal experiences with online fraud and identity theft, Aaron assembled a team of security experts to create the next generation of account protection. Nametag's mission is to bring authenticity to the internet and enable users to build trusted relationships. Nametag believes that security should be centered around the user, and that user identity, like privacy, is a valuable asset that deserves protection. Aaron is a global leader, having lived and worked in six countries across four continents. He has authored a best-selling book titled LOYAL, in which he details his key to leadership: fostering a culture of listening. Aaron has codified and implemented this framework of listening in his businesses, which has led to success across the world.