white paper

Stop enterprise-wide identity phishing with modern strong authentication

Why mobile authentication just isn’t good enough

Phishing attacks are on the rise, yet not all types of multi-factor authentication (MFA) are up to the task of preventing modern phishing attacks. Similar to usernames and passwords, mobile-based authentication such as SMS, one-time passcode (OTP), and push notifications also rely on ‘shared secrets’ that can be breached by malware, SIM swapping, and man-in-the-middle (MiTM) attacks.

Download the Yubico EBook How to stop enterprise-wide identity phishing with modern strong authentication: Why mobile authentication just isn’t good enough to learn:

  • What identity phishing is, and common types of phishing attacks
  • How modern phishing defeats mobile-based multi-factor authentication
  • The 4 best practices to protect against enterprise-wide identity phishing