Description
- Type: CUSTOMER
- Severity: NOTICE
- Protection against: Hacking > Use of Stolen Creds
- FIX Available: YES
This Customer Check verifies if Microsoft Authenticator displays the app name during a sign-in attempt.
Why this check?
When Microsoft Authenticator is enabled, an employee receives a push notification on their phone during a sign-in attempt. With the feature to display the app name enabled, the notification will show the name of the App from which the sign-in attempt was initiated. This helps the employee to recognize and reject fraudulent sign-in attempts.
In a separate check CHK-1153, it is verified whether the location of a sign-in attempt is also displayed. Together, these two aspects lead to notifications like this:
Example of context info |
Example in case number matching is enabled |
What possible outcomes does the check have?
This check has two possible outcomes. In Attic, this is reflected as follows:
- Okay: Displaying the app name during sign-in attempts is enabled
- Notice: Displaying the app name during sign-in attempts is not yet enabled.
How should this be followed up?
If the output is Notice, we advise enabling the display of the app name during sign-in attempts.
A Fix is available for this check, which we will offer via Attic.
Comments
0 comments
Please sign in to leave a comment.