MFA prompt bombing (noun) [Word Notes]

AI Summary

In this brief episode, host Rick Howard defines "MFA prompt bombing" as a technique where attackers flood a user with authentication prompts until they approve one out of frustration, effectively bypassing multifactor authentication. He highlights the growing relevance of this attack vector and points listeners to the CyberWire glossary for deeper context. The episode underscores the need for organizations to implement prompt throttling and user education to mitigate this social engineering threat.

Episode Description

Please enjoy this encore of Word Notes.

Hackers bypass, multifactor authentication schemes by sending a blizzard of spamming login attempts until the accounts owner accepts the MFA prompt out of desperation to make the spamming stop.

CyberWire Glossary link: ⁠https://thecyberwire.com/glossary/mfa-prompt-bombing⁠

Audio reference link: movieclips. “⁠Sneakers (2/9) Movie Clip - Defeating the Keypad (1992) HD.⁠” YouTube, YouTube, 29 May 2011, https://www.youtube.com/watch?v=oG5vsPJ5Tos.

Show Notes

MFA prompt bombing (noun)

January 13, 2026

Author / Host: Rick Howard

Definition

Hackers bypass multifactor authentication (MFA) schemes by sending a blizzard of spamming login attempts until the account’s owner accepts the MFA prompt out of desperation to make the spamming stop.

Related links

CyberWire Glossary entry: https://thecyberwire.com/glossary/mfa-prompt-bombing
Audio reference: “Sneakers (2/9) Movie Clip – Defeating the Keypad (1992) HD.” YouTube, 29 May 2011. https://www.youtube.com/watch?v=oG5vsPJ5Tos

Podcast information

Show: Word Notes (Episode 117, 9 Oct 2022)
Host: Rick Howard – CSO of N2K, Chief Analyst and Senior Fellow at N2K Cyber (formerly CyberWire)

End of article.

Cybersecurity Podcasts

AI Summary

Episode Description

Show Notes

Comments

Top Publishers

Top Creators

Top Companies

Top Investors