TL;DR: Legacy MFA models built for 2015-era threats are increasingly vulnerable to MFA fatigue, reverse-proxy phishing, token theft, SIM swaps, OTP interception, and AI-driven social engineering, according to eMudhra. The security problem is no longer authentication alone, but whether trust is cryptographically anchored enough to survive modern deception and session abuse.
At a glance
What this is: The article argues that many enterprise MFA deployments are still tuned for older threat models, while attackers increasingly bypass them through phishing, token theft, and AI-assisted social engineering.
Why it matters: That matters because IAM teams must now treat MFA as a session and identity assurance problem across human and machine access, not as a one-time login checkpoint.
👉 Read eMudhra's analysis of why weak MFA may not survive 2026
Context
Weak MFA fails when the control assumes a user will spot deception at the moment of approval. The article's primary identity question is whether authentication still holds up when attackers use reverse-proxy phishing, session theft, and AI-generated social engineering to turn user judgment into the weak link.
For IAM and PAM teams, the scope is broader than human logins. The same trust problem now touches machine identity, service accounts, API access, and Zero Trust enforcement, because authentication is increasingly being tested across the whole session rather than only at the sign-in screen.
Key questions
Q: How should security teams implement phishing-resistant MFA for privileged SaaS access?
A: Start with the identities that can export data or change access, including IdP admins, SaaS admins, and helpdesk staff. Use FIDO2 or passkeys, not push approval, and pair MFA with device checks and token monitoring. The goal is to reduce the chance that an attacker can turn a live session into reusable access.
Q: Why do push approvals and OTPs fail against modern MFA attacks?
A: Because both rely on something a user can be tricked into giving away or approving. Attackers use reverse-proxy phishing, MFA fatigue, SIM swaps, and OTP interception to turn the second factor into a liability. Once the factor is replayable or socially engineerable, it no longer provides strong assurance.
Q: What do security teams get wrong about MFA in identity attacks?
A: They often assume MFA ends the problem once the code is entered. In reality, an attacker can still register devices, sustain sessions, and exploit downstream trust if post-authentication controls are weak. MFA helps, but it does not replace continuous authorization, device governance, or review of delegated access.
Q: Who is accountable when an MFA bypass leads to account compromise?
A: Accountability should sit with the identity and access owner for the affected population, plus the security team responsible for authentication policy and monitoring. Governance frameworks such as Zero Trust and enterprise IAM controls require that sign-in, session trust and privileged access are designed and reviewed together, not separately.
Technical breakdown
Why phishing-resistant MFA changes the trust model
Phishing-resistant MFA removes the attacker’s ability to capture and replay the factor in a usable form. FIDO2 security keys, certificate-based authentication, and device-bound passkeys bind the credential to a cryptographic operation rather than a user-entered code or approval gesture. That shifts trust from human decision-making to possession of a private key that never leaves the device. In practice, this matters because reverse-proxy phishing, OTP interception, and MFA fatigue campaigns all depend on replayable or socially engineerable steps. Once the factor can be forwarded, copied, or approved remotely, the authentication control becomes an attack target instead of a barrier.
Practical implication: prioritize authentication methods that cannot be proxied, replayed, or approved by mistake.
Session theft and token abuse are now MFA failure modes
Modern attacks often bypass the login prompt entirely by stealing session cookies, OAuth tokens, or other post-authentication artefacts. In those cases, MFA succeeded at the front door but failed to protect the live session. This is why continuous verification, step-up checks for sensitive actions, and context-aware policy enforcement matter more than a single successful login. The article correctly frames MFA as a session integrity problem, not just an authentication ceremony. If the attacker can hijack a live session after enrolment or approval, the original MFA event no longer meaningfully limits access.
Practical implication: extend MFA governance into session monitoring, step-up policy, and token protection.
Machine identity makes MFA a broader access-control issue
The article’s machine-identity point is operationally important: service accounts, bots, IoT devices, and workloads authenticate at a scale and frequency that human-centric MFA cannot absorb. Machines do not click push prompts, and they cannot be governed by user UX assumptions. Their trust model needs certificate-backed authentication, workload identity, and session-aware controls that match automated runtime behaviour. This is where human IAM habits often break down, because the control design is still anchored to interactive sign-in. Once machine access joins the picture, authentication has to support non-interactive identities and privileged actions without relying on human approval loops.
Practical implication: separate human MFA design from machine identity design and govern both explicitly.
Threat narrative
Attacker objective: The attacker wants durable authenticated access that survives the original MFA challenge and enables lateral movement or privileged action inside the session.
- Entry begins with reverse-proxy phishing, MFA fatigue spam, SIM swap abuse, or AI-generated social engineering that convinces the user to release the factor or approve access.
- Escalation occurs when the attacker captures a session cookie, token, or approved login state and uses it to operate as the authenticated user without needing the password or second factor again.
- Impact follows when the hijacked session is used to access data, execute privileged actions, or move into machine and workload access paths that the original MFA never governed.
Breaches seen in the wild
- Salesloft OAuth token breach — hackers stole OAuth tokens to access Salesforce data via Salesloft.
- MITRE ATT&CK Enterprise Matrix — MITRE ATT&CK Enterprise — adversary tactics and techniques, threat detection, attack chain mapping, credential access, lateral movement, privilege escalation.
Read our 52 NHI Breaches Analysis report for a comprehensive view of breaches impacting Non-Human Identities including AI Agents.
NHI Mgmt Group analysis
Cryptographic identity is replacing approval-based MFA because human decision gates no longer scale against modern attack design. Reverse-proxy phishing, OTP interception, and push fatigue all succeed by turning the user into the verification step. That makes the control dependent on judgment at the exact moment attackers are trying to manipulate it. The practitioner conclusion is that approval-led MFA is no longer a stable assurance model.
Session integrity is now the real control boundary. The article is right to frame token theft and cookie replay as core MFA failure modes, because authentication does not end at login. Once a session is established, the attacker often no longer needs the factor, only the artefact. That means the governance question is not simply who authenticated, but whether the authenticated session remains trustworthy after issuance. Practitioners should treat live-session abuse as part of identity assurance, not only as a post-authentication threat.
Machine identity exposes the human-only assumption hidden inside many MFA programmes. The article’s claim that machines authenticate thousands of times a minute highlights a structural mismatch between interactive MFA and non-interactive identities. Human approval loops, OTPs, and push prompts were designed for people, not workloads or service accounts. The practical conclusion is that authentication architecture must distinguish between human, NHI, and workload contexts instead of forcing one MFA pattern across all actors.
Legacy MFA creates trust debt when organisations mistake widespread deployment for effective resistance. The article opens with the belief that many organisations already run modern MFA, but coverage alone does not equal phishing resistance. A programme can be broad and still remain brittle if it still accepts replayable or socially engineerable factors. The practitioner conclusion is that MFA maturity should be judged by attack resistance, not by enrolment counts.
Zero Trust makes continuous verification mandatory, but many MFA deployments still behave like a one-time gate. When the access model assumes the login event is enough, attackers only need to win once. Continuous checks for device posture, context, and sensitive actions are the difference between a control and a momentary checkpoint. The practitioner conclusion is that MFA must be evaluated as part of the full access path, not as a standalone authentication feature.
From our research:
- 1 in 4 organisations are already investing in dedicated NHI security capabilities, with an additional 60% planning to do so within the next twelve months, according to The State of Non-Human Identity Security.
- Lack of credential rotation is cited as the top cause of NHI-related attacks by 45% of organisations, followed by inadequate monitoring and logging at 37% and over-privileged accounts at 37%.
- That governance gap is why 52 NHI Breaches Analysis remains useful for teams tracing how credential exposure turns into operational compromise.
What this signals
Phishing resistance is becoming a governance baseline rather than a premium feature. As attackers shift from password guessing to factor abuse, the useful distinction is no longer between MFA and no MFA. It is between replayable assurance and cryptographic assurance, and that distinction now matters across human IAM, PAM, and workload identity.
Session-bound control is the next maturity step for identity programmes. Organisations that still treat login as the end of authentication will miss the point of token theft and cookie replay. The control boundary has moved into the session, which means policy, telemetry, and privilege checks need to travel with it.
Machine access also forces teams to distinguish between user-oriented authentication and NHI governance. If a workload or service account can only be protected through human approval patterns, the control model is already misaligned with how the identity actually operates.
For practitioners
- Prioritise phishing-resistant factors for high-risk access Move privileged users, admins, and remote access paths to FIDO2 security keys, certificate-based authentication, or device-bound passkeys. Keep OTPs and push approvals out of the highest-risk flows because they remain vulnerable to replay, fatigue, and interception.
- Extend MFA policy into the live session Add step-up rules for privileged actions, risky context changes, and anomalous access patterns. Treat token protection, session lifetime, and device trust as part of MFA governance rather than separate concerns.
- Separate human and machine authentication models Design a distinct control path for service accounts, workloads, and APIs using certificates, workload identity, and non-interactive access patterns. Do not force human approval workflows onto identities that authenticate at machine speed.
- Test for phishing resistance, not enrolment coverage Review where users can still approve access, enter a code, or pass an authentication step that an attacker can proxy. Measure the percentage of critical applications protected by non-replayable factors, not just the number of enrolled users.
Key takeaways
- Weak MFA fails when attackers can turn user approval, token theft, or replay into a valid session.
- The evidence points to a control gap that spans human login, session integrity, and machine identity, not just password strength.
- Practitioners should move high-risk access to non-replayable authentication and govern the whole session, not only the sign-in event.
Standards & Framework Alignment
This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.
OWASP Non-Human Identity Top 10 address the attack and risk surface, while NIST CSF 2.0, NIST SP 800-53 Rev 5 and NIST Zero Trust (SP 800-207) set the governance and control requirements practitioners need to meet.
| Framework | Control / Reference | Relevance |
|---|---|---|
| NIST CSF 2.0 | PR.AC-7 | Continuous verification and access control are central to the article's MFA guidance. |
| NIST SP 800-53 Rev 5 | IA-2 | Identification and authentication controls govern the shift away from replayable MFA. |
| NIST Zero Trust (SP 800-207) | The article repeatedly frames MFA as part of continuous Zero Trust verification. | |
| OWASP Non-Human Identity Top 10 | NHI-03 | Machine identity and service-account access are explicitly in scope for the article. |
Apply NHI-03 thinking to non-interactive identities and remove human-only MFA assumptions.
Key terms
- Phishing-Resistant MFA: Phishing-resistant MFA uses authentication factors that cannot be easily replayed, intercepted, or socially engineered. In regulated environments, this usually means device-bound or cryptographic methods rather than push prompts or SMS codes, because the control must hold up under realistic attack conditions.
- Session Integrity: Session integrity is the assurance that an authenticated connection remains trustworthy after sign-in. It covers token use, channel validation, and device posture, because attackers often target the session after the login event rather than the login event itself.
- Machine identity: A non-human identity used by workloads, services, bots, APIs, or devices to authenticate and access resources. It behaves differently from a person because it can authenticate at high frequency and cannot be governed safely with human approval patterns alone.
- Cryptographic Identity: Cryptographic identity is a trust model in which authentication depends on verifiable keys, certificates, or signed assertions rather than shared secrets alone. It is essential for machines and agents because it gives the organisation a stronger way to prove identity and revoke access quickly.
What's in the full article
eMudhra's full article covers the operational detail this post intentionally leaves for the source:
- The vendor's step-by-step reasoning for why FIDO2, certificate-based authentication, and device-bound passkeys reduce replay risk.
- The article's comparison of push-based MFA, OTPs, and cryptographic token models across human and machine access.
- The vendor's view on how AI-driven social engineering changes the design assumptions behind MFA.
- The product-specific integration angle for IAM, PAM, PKI, and Zero Trust environments.
Deepen your knowledge
NHI governance, agentic AI identity, and machine identity lifecycle are core topics in our NHI Foundation Level course, the industry's only accredited NHI security programme. If you are building or maturing an IAM programme, it is worth exploring.
Published by the NHIMG editorial team on July 11, 2026.
NHI Mgmt Group — the independent authority on Non-Human Identity, IAM, and Agentic AI security. nhimg.org