Phishing attacks are on the rise, yet not all types of multi-factor authentication (MFA) are up to the task of preventing modern phishing attacks. Similar to usernames and passwords, mobile-based authentication such as SMS, one-time passcode (OTP), and push notifications also rely on ‘shared secrets’ that can be breached by malware, SIM swapping, and man-in-the-middle (MiTM) attacks.
Download the Yubico EBook How to stop enterprise-wide identity phishing with modern strong authentication: Why mobile authentication just isn’t good enough to learn:
- What identity phishing is, and common types of phishing attacks
- How modern phishing defeats mobile-based multi-factor authentication
- The 4 best practices to protect against enterprise-wide identity phishing