Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Caute_cautim
Community Champion
‎05-25-2022 04:58 PM
‎05-25-2022 04:58 PM

SIM Based Authentication to reduce Phishing attacks

Hi All

 

This looks like an interesting idea for reducing phishing attacks against mobile devices.

 

What do you think?

 

https://thehackernews.com/2022/05/sim-based-authentication-aims-to.html

 

Regards

 

Caute_Cautim

Reply
0 Kudos
1 Reply
denbesten
Community Champion
‎05-26-2022 12:17 AM
‎05-26-2022 12:17 AM

General advice I hear is "SMS and call-based MFA [are] the least secure of the MFA methods available today" [cite].  It is good to see that the article's subject is attempting to address SMS weaknesses.

 

My personal favorite MFA defense at the moment is the "number matching" mechanism. That said, Even the worst MFA is substantially better than NO MFA, so I will gladly leverage whatever the IdP offers.

 

Plus, we should be striving to minimize user-disruption with technologies such as cert-auth, SSO, and face-id, reserving traditional MFA for high-risk activities such as device registration and password resets.

Reply
0 Kudos