A guide to securing organizations
from MFA fatigue

The shift to remote and hybrid work has made authentication security more difficult and has put the spotlight on the drawbacks of traditional authentication methods. Threat actors who engage in MFA fatigue attacks, also known as MFA prompt bombing, deliberately bombard users' mobile devices with push notifications to get past MFA protection.

The 2022 State of Passwordless Security report found that 34% of organizations suffered credential stuffing attacks. The study also revealed a 33% rise in MFA fatigue attacks since 2021. This guide will help you overcome the authentication challenges and fortify your security infrastructure against these new age attacks successfully.

In this guide, you'll learn:

  • What MFA fatigue is and how it works.
  • About recent MFA fatigue attacks.
  • What organizations can do to strengthen their MFA.
  • How ManageEngine's identity security features combat MFA fatigue.