MFA Bombing: What Is It & How to Protect Against It

MFA bombing, or MFA prompt bombing, is a cyberattack technique where attackers exploit "MFA fatigue" by overwhelming users with repeated Multi-Factor Authentication (MFA) prompts, leading them to inadvertently approve a fraudulent request and grant unauthorized access. This tactic involves sending a high volume of requests quickly, spreading them over time, or using social engineering to deceive users. To combat these attacks, organizations should focus on user education, employ strong or passwordless authentication methods, and implement automatic account lockout policies. Advanced defenses include phishing-resistant MFA and behavioral monitoring to detect and block suspicious activity. In response to such threats, tools like Descope offer robust MFA solutions through visual workflows and risk-based customization, enhancing security against these sophisticated attacks.