MFA combines something you know (password), something you have (phone, hardware key), and/or something you are (biometric). Phishing-resistant MFA (like WebAuthn/FIDO2) is the emerging standard; SMS-based MFA is deprecated in most compliance frameworks.
Strong MFA blocks the majority of credential-based attacks.
Related terms
See how Scarlet Risk covers MFA.
One platform for compliance, cyber, crypto, and world-watch risk.
Schedule Live Demo