Cloud account takeover has become a significant problem for organisations. Think about how much work your company does that requires a username and password. Employees have to log in to many different systems or cloud apps.
Hackers use various methods to get those login credentials. The goal is to gain access to business data as a user. As well as launch sophisticated attacks, and send insider phishing emails.
How bad has the problem of account breaches become? Between 2019 and 2021, account takeover (ATO) rose by 307%.
Many organisations and individuals use multi-factor authentication (MFA). It’s a way to stop attackers that have gained access to their usernames and passwords. MFA has been very effective at protecting cloud accounts for many years.
But it’s that effect that has spurred workarounds by hackers. One of these nefarious ways to get around MFA is push-bombing.
When users enable MFA on an account, they typically receive a code or authorisation prompt of some type. The user enters their login credentials. Then the system sends an authorisation request to the user to complete their login.
The MFA code or approval request usually comes through a “push” message. Users can receive it in a few ways:
Receiving that notification is a normal part of the multi-factor authentication login. It’s something the user would be familiar with.
With push-bombing, hackers start with the user’s credentials. They may get them through phishing or a significant data breach password dump.
They take advantage of that push notification process. Hackers attempt to log in many times; this sends the legitimate user several push notifications, one after the other.
Many people question the receipt of an unexpected code that they didn’t request. But when someone is bombarded with these, it can be easy to click to approve access mistakenly.
Push-bombing is a form of social engineering attack designed to:
Knowledge is power. When a user experiences a push-bombing attack, it can be disruptive and confusing. If employees have education beforehand, they’ll be better prepared to defend themselves.
Let employees know what push-bombing is and how it works. Train them on what to do if they receive MFA notifications they didn’t request.
You should also give your staff a way to report these attacks; this enables your IT security team to alert other users. They can then also take steps to secure everyone’s login credentials.
On average, employees use 36 different cloud-based services per day. That’s a lot of logins to keep up with. The more logins someone has to use, the greater the risk of a stolen password.
Take a look at how many applications your company uses. Look for ways to reduce app “sprawl” by consolidating. Platforms like Microsoft 365 and Google Workspace offer many tools behind one login. Streamlining your cloud environment improves security and productivity.
You can thwart push-bombing attacks by moving to a different form of MFA. Phishing-resistant MFA uses a device passkey or physical security key for authentication.
There is no push notification to approve this type of authentication. This solution is more complex to set up but also more secure than text or app-based MFA.
To send several push notifications, hackers must have the user’s login. Enforcing strong password policies reduces the chance that a password will get breached.
Standard practices for strong password policies include:
Advanced identity management solutions can also help you prevent push-bombing attacks. They will typically combine all logins through a single sign-on solution. Users have just one login and MFA prompt to manage rather than several.
Additionally, businesses can use identity management solutions to install contextual login policies. These enable a higher level of security by adding access enforcement flexibility. The system could automatically block login attempts outside a desired geographic area. It could also block logins during certain times or when other contextual factors aren’t met.
Multi-factor authentication alone isn’t enough. Companies need several layers of protection to reduce their risk of a cloud breach.
Are you looking for some help to reinforce your access security? Give us a call today to schedule a chat.
We’re unique because…
We’re always just a phone call away; we live and breathe IT services. We’re here to help your business with anything that could go wrong with your systems or devices.
Contact us today or explore the range of support packages on offer.
6 Things You Should Do to Handle Data Privacy Updates
Once data began going digital, authorities realised a need to protect it. Thus, data privacy rules and regulations are created…
6 Steps to Effective Vulnerability Management for Your Technology
Technology vulnerabilities are an unfortunate side effect of innovation. When software companies push new updates, the code often has weaknesses….
Business owners often have to wear many hats, from handling HR and marketing tasks to managing the finances. One task…
Cool Windows 11 Features That May Make You Love This OS
Microsoft released the Windows 11 operating system (OS) over a year ago. It was well-received mainly with reviews as stable…
6 Ways to Prevent Misconfiguration (the Main Cause of Cloud Breaches)
Misconfiguration of cloud solutions is often overlooked when companies plan cybersecurity strategies. Cloud apps are typically quick and easy to…
4 Proven Ways to Mitigate the Costs of a Data Breach
No business wants to suffer a data breach, but unfortunately, it’s difficult to avoid them in today’s environment. Approximately 83%…
The benefits of AI include advancing our technology, improving business operations, and much more. Adoption of AI has more than doubled…
Leading Password Managers for Personal and Business
We hope that your business is already considering a password manager system, but there’s still the matter of finding the…
You often hear the words “digital transformation” and “collaboration.” But what do they actually mean? What do they mean for…
What’s Changing in the Cybersecurity Insurance Market?
Cybersecurity insurance is still a pretty new concept for many SMBs. It was initially introduced in the 1990s to provide coverage for large enterprises. It covered things like data processing errors and online media.
What to include in a Year-end Technology Infrastructure Review
When the year is coming to a close, it’s the perfect time to plan for the future. Most businesses begin…
What are the advantages of implementing Conditional Access?
It seems that nearly as long as passwords have been around, they’ve been a major source of security concern. Eighty-one…
Simple Setup Checklist for Microsoft Teams
Microsoft Teams is a lot of things. It’s a video conferencing tool, a team messaging channel, and a tool for…
Passwords: Is It Time to Ditch for More Secure Passkeys?
Passwords are the most used authentication method but are among the weakest. Passwords are often easy to guess or steal….
What is App Fatigue & Why is it a Security Issue?
The number of apps and web tools employees use regularly continues to increase. Most departments have about 40-60 different digital…
IT Support and Services in London
What is included in IT support services? IT support services for businesses include servers, email, cloud services, telephone, mobile phones,…
These Everyday Objects Can Lead to Identity Theft
You wouldn’t think a child’s toy could lead to a breach of your data. But this happens all the time….
How to Use the New Virtual Appointments in Microsoft Teams
Scheduling appointments is an everyday activity. Salespeople often set up virtual appointments to answer questions about a product. Software companies…
Streamline Your Business And Boost Productivity With Expert Business IT Support In London
In today’s fast-paced business world, efficiency is a top priority for any organisation. With many tasks to manage and deadlines…
7 Customer-Facing Technologies to Give You an Advantage
Customers look for convenience. In today’s world, that means technology that makes their life easier. From webforms to POS systems,…
What is a good message for auto-reply? A good message for an auto-reply depends on the context of the situation….
IT Consultancy in London | Penntech IT Solutions
Let Our Consultants Soothe Your IT Headache Penntech IT Consultants are trained to understand complex concepts clearly and provide an…