MFA bombing is a social engineering cyberattack technique where attackers inundate a victim’s email, phone, or registered devices with repeated multi-factor authentication requests. When the victim approves the requests, the attackers gain unauthorized access to their account or device.  

With our October release, 1Kosmos has enhanced capabilities to present a number challenge every time a user requests a push notification. Number matching is a key security upgrade to traditional push notifications in the 1Kosmos App.  

How it works  

The introduction of the number challenge feature involves presenting the user with a randomly generated number in the Login Request screen and pushes a notification to the 1Kosmos app on the user’s mobile device. The user selects the number that matches what they see in the Login Request screen. If the selection is correct, the user can successfully login to their device. This number challenge helps prevent phishing by ensuring that the user possesses both the 1Kosmos app and the device initiating the sign-in attempt. The authentication also verifies that a sign-in attempt to the 1Kosmos app has come from the intended user or from an unauthorized person.