Dejkala
No Result
View All Result
  • Home
  • Tech
  • Banking & loan
  • Games
  • Car’s & Bike’s
  • Home
  • Tech
  • Banking & loan
  • Games
  • Car’s & Bike’s
No Result
View All Result
Dejkala
No Result
View All Result
Home Latest update

Microsoft Authenticator gains feature to thwart spam attacks on MFA- Dejkala

by hasibul
October 28, 2022
in Latest update
0
Microsoft Authenticator gains feature to thwart spam attacks on MFA- Dejkala
0
VIEWS
Share on FacebookShare on Twitter


iphone-users

Image: Getty Images/MoMo Productions

Microsoft has rolled out ‘number matching’ in push notifications for its multi-factor authentication (MFA) app Microsoft Authenticator.

The new advanced feature is generally available in Microsoft Authenticator and should help counter attacks on MFA that rely on push notification spam.

Researchers earlier this year spotted so-called ‘MFA fatigue attacks’ on Office 365 users, where attackers repeatedly trigger MFA push notifications while trying to log in to a victim’s account with an already compromised password. The attacker hopes at some point the victim is worn down or distracted enough by the notifications to accidentally approve the login attempt.

Also: iPhone 14 Pro vs. iPhone 13 Pro: Is the newest iPhone worth the upgrade?

With number matching enabled, the Authenticator app requires the user to type in the number displayed on the sign-on screen when approving an MFA request rather than just hitting ‘approve’. This is going to be a handy feature for admins whose users have been caught out by this attack on MFA.

For now, admins can enable number matching in Authenticator, but Microsoft plans to make it the default for all Authenticator users in February 2023, according to Alex Weinert, Microsoft’s VP director of identity security.

Admins can also use configure Authenticator to use location context and application context to prevent accidental approvals. 

Microsoft has published instructions for configuring number matching, which can be enabled by group or other filters, and notes that number matching isn’t supported on Apple Watch notifications. The admin roll out controls will be removed after number matching becomes the default for the Authenticator app.

Also, now Authenticator on iOS uses App Transport Security (ATS), a security feature Apple introduced in iOS 9 in 2015 to enforce secure connections over the internet. However, ATS needs to be enabled by app developers and researchers in 2019 found that 67% of 30,000 scanned apps had ATS completely disabled.

Microsoft Authenticator: number matching

Image: Microsoft


ShareTweetShare

Related Posts

NVIDIA’s G-Sync ULMB 2 aims to minimize motion blur in games- Dejkala
Latest update

NVIDIA’s G-Sync ULMB 2 aims to minimize motion blur in games- Dejkala

May 30, 2023
HP printers should have EPEAT ecolabels revoked, trade group demands- Dejkala
Latest update

HP printers should have EPEAT ecolabels revoked, trade group demands- Dejkala

May 29, 2023
MediaTek partners with Nvidia to add Nvidia's GPU chiplets and software to MediaTek SoCs used in automotive infotainment systems (Joseph White/Reuters)- Dejkala
Latest update

MediaTek partners with Nvidia to add Nvidia's GPU chiplets and software to MediaTek SoCs used in automotive infotainment systems (Joseph White/Reuters)- Dejkala

May 29, 2023
MediaTek taps Nvidia GPU and AI for connected car chipsets- Dejkala
Latest update

MediaTek taps Nvidia GPU and AI for connected car chipsets- Dejkala

May 29, 2023
What I use to measure device power consumption (and what you should use instead)- Dejkala
Latest update

What I use to measure device power consumption (and what you should use instead)- Dejkala

May 29, 2023
This MSI laptop is a monster video editing machine- Dejkala
Latest update

This MSI laptop is a monster video editing machine- Dejkala

May 29, 2023
Next Post
A look at the ongoing Qualcomm-Arm legal dispute, as Qualcomm claims Arm plans to stop licensing its CPUs to semiconductor companies after 2024 (Dylan Patel/SemiAnalysis)- Dejkala

A look at the ongoing Qualcomm-Arm legal dispute, as Qualcomm claims Arm plans to stop licensing its CPUs to semiconductor companies after 2024 (Dylan Patel/SemiAnalysis)- Dejkala

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Categories

  • Earn Money Online
  • Game news and review
  • Laptops
  • Latest update
  • Smartphone Reviews & News
  • TODAY Tech News
  • Upcoming Technology
  • Wordpress plugin
  • WordPress themes
  • World Wide Bike Reviews and News
  • World Wide Car News

Recommended

Indian B2B marketplace Udaan raised $120M in convertible notes and debt, taking its funding to $350M+ in the past year, and plans an IPO in 12-18 months (Manish Singh/TechCrunch)- Dejkala

Indian B2B marketplace Udaan raised $120M in convertible notes and debt, taking its funding to $350M+ in the past year, and plans an IPO in 12-18 months (Manish Singh/TechCrunch)- Dejkala

October 27, 2022
A look at China's global satellite internet ambitions in competition with Starlink, including homegrown startups that experts say will ultimately be state-owned (Meaghan Tobin/Rest of World)- Dejkala

A look at China's global satellite internet ambitions in competition with Starlink, including homegrown startups that experts say will ultimately be state-owned (Meaghan Tobin/Rest of World)- Dejkala

January 13, 2023
Is cybersecurity an unsolvable problem?- Dejkala

Is cybersecurity an unsolvable problem?- Dejkala

May 27, 2023
Social media shadowbanning is real and tech firms should be more transparent about it; survey: ~1 in 10 US social media users think they've been shadowbanned (Geoffrey A. Fowler/Washington Post)- Dejkala

Social media shadowbanning is real and tech firms should be more transparent about it; survey: ~1 in 10 US social media users think they've been shadowbanned (Geoffrey A. Fowler/Washington Post)- Dejkala

December 27, 2022
Remote work is everywhere now. But here are 3 things I’ve learned from doing it for years- Dejkala

Remote work is everywhere now. But here are 3 things I’ve learned from doing it for years- Dejkala

December 30, 2022
As Twitter's problems mount, Elon Musk is on pace to tweet over 750 times in November, or more than 25 times a day, up from around 13 per day in April (Ryan Mac/New York Times)- Dejkala

As Twitter's problems mount, Elon Musk is on pace to tweet over 750 times in November, or more than 25 times a day, up from around 13 per day in April (Ryan Mac/New York Times)- Dejkala

November 8, 2022
NVIDIA’s G-Sync ULMB 2 aims to minimize motion blur in games- Dejkala

NVIDIA’s G-Sync ULMB 2 aims to minimize motion blur in games- Dejkala

May 30, 2023
HP printers should have EPEAT ecolabels revoked, trade group demands- Dejkala

HP printers should have EPEAT ecolabels revoked, trade group demands- Dejkala

May 29, 2023
MediaTek partners with Nvidia to add Nvidia's GPU chiplets and software to MediaTek SoCs used in automotive infotainment systems (Joseph White/Reuters)- Dejkala

MediaTek partners with Nvidia to add Nvidia's GPU chiplets and software to MediaTek SoCs used in automotive infotainment systems (Joseph White/Reuters)- Dejkala

May 29, 2023

Categories

  • Earn Money Online
  • Game news and review
  • Laptops
  • Latest update
  • Smartphone Reviews & News
  • TODAY Tech News
  • Upcoming Technology
  • Wordpress plugin
  • WordPress themes
  • World Wide Bike Reviews and News
  • World Wide Car News

Pages

  • About Us
  • Banking & loan
  • Car’s & Bike’s
  • Contact Us
  • Games
  • Home
  • Home 2
  • Privacy Policy
  • Tech

© 2022 Dejkala

No Result
View All Result
  • Homepages
    • Home – Layout 1
    • Home – Layout 2

© 2022 Dejkala