Microsoft has introduced a new feature in its Authenticator app aimed at strengthening protection against multi-user authentication (MFA) attacks. The move comes after Google updated its Authenticator app to enhance convenience and user experience. While Google has been positioning its app as the preferred solution, Microsoft’s focus is on keeping accounts safe and secure.
MFA, also known as Push Bombing, involves hackers attempting to enter a victim’s account multiple times by overwhelming them with notifications. This method is used when hackers already have the victim’s account credentials but are blocked by MFA. The victim may press the “Yes, this is me” button to stop the flow of notifications, giving the hacker access to the account.
If MFA is configured for a one-time password, the victim may be forced to turn it off to stop the flow of notifications, which gives attackers direct access to the account.
To prevent Push Bombing, users should change their account password, which is now more reliable than before.
The introduction of Microsoft’s new feature in its Authenticator app is an effective way to strengthen protection against MFA attacks. By keeping account security its primary focus, Microsoft continues to provide a secure solution for users despite the competition.