Multi-factor authentication (MFA) can help you protect your online accounts by requiring that you approve login attempts before you can access the accounts.
However, if you accidentally approve an MFA notification that you didn’t request, cybercriminals may be able to access your accounts and personal information.
In a new scam, cybercriminals are annoying you into approving an MFA notification. If cybercriminals figure out your login credentials for an account, they can send you repeated MFA notifications. The cybercriminals hope that you will eventually approve a notification to stop the notifications from sending. Then, the cybercriminals can update the MFA settings in your account to send notifications to their device instead of your own. As a result, the cybercriminals can gain permanent access to your account and any personal information that’s in the account.
Follow these tips to stay safe from MFA scams:
Content provided by KnowBe4