2022: A year of phishing with a solution to calm the seas

Ronnie Manning

Ronnie Manning

2 minute read

In 2022, phishing scams continued to hook into consumers and enterprise accounts. In fact, recent research from EMA revealed that 87% of surveyed businesses indicate that their organization experienced an identity-related security breach in the preceding 12 months. Many successes of the sophisticated phishing scams were due to legacy MFA implementations such as SMS, mobile auth, and OTP which aren’t phishing-resistant or equipped to stop these types of attacks.

Phishing-resistant MFA is multi-factor authentication (MFA) that is immune from attempts to compromise or subvert the authentication process, commonly achieved through phishing attacks, which includes but is not limited to spear phishing, brute force attacks, man-in-the-middle attacks, replay attacks and credential stuffing. Phishing resistance within an authentication mechanism is achieved by not only requiring that each party provide proof of their identity but also intent through deliberate action. MFA can be phishing-resistant via a FIDO authenticator such as the YubiKey, and also provide a smooth user experience.

YubiKeys have continued to help calm the seas, preventing phishing attempts against individuals, enterprises, election campaigns, critical infrastructure in Ukraine, and beyond. Yubico is proud to have donated tens of thousands of YubiKeys to more than 85 organizations through our Secure it Forward program – ensuring journalists, human rights organizations, and those working to further diversity in tech were protected by security keys. And we’re truly honored that we were named a winner of the Inc. Best in Business 2022 specifically for this program. 

We continue to be grateful for the opportunity to make a difference in the world of internet security. As we wrap up 2022, we wanted to take a moment to look back at what the year brought us in cybersecurity, and provide a sneak peak into what companies can do to prepare for 2023. 

We wish you a peaceful remainder of the year and look forward to being able to continue our mission of making the internet more secure for everyone.

, , ,
Talk to our teamTalk to our team

Share this article:
  • Platform independent digital identity for all Many are understandably concerned that the great invention called the Internet, initially created by researchers for sharing information, has become a major threat to democracy, security and trust. The majority of these challenges are caused by stolen, misused or fake identities. To mitigate these risks, some claim that we have to choose between security, usability […]Read moreDigital IdentityEUDIFounderStina Ehrensvard
  • Q&A with Yubico’s CEO: Our move to the main Nasdaq market in StockholmAs 2024 draws to a close, it’s the perfect time to reflect on the incredible journey we’ve had this year and how it has shaped where we stand today as a company. To mark this moment, I sat down with our CEO, Mattias Danielsson, to look back on the milestones and achievements of 2024—culminating in […]Read moreCEOMattias Danielsson
  • Exploring DORA: A look at the next major EU mandateFinancial institutions have historically managed operational risk using capital allocation, but under EU Regulation 2022/2554 – also known as the Digital Operational Resilience Act (DORA) – the financial sector and associated entities in the European Economic Area (EEA) must also soon follow new rules. These new rules focus on the protection, detection, containment, and the […]Read moreDORAEU
  • Securing critical infrastructure from modern cyber threats with phishing-resistant authenticationAcross the globe, 2024 has seen a whirlwind of change. With ongoing wars, recent political change-ups and more, growth in data breaches targeting critical infrastructure continue to be on the rise. Critical infrastructure is integral to our everyday life – from the energy and natural resources powering our hospitals and providing clean drinking water, telco […]Read moreCISAcritical infrastructurezero trust