The report revealed several significant trends:
- Traditional multi-factor authentication (MFA) methods are increasingly under attack. These include Remote Desktop Protocol (RDP) attacks, account takeover (ATO) fraud, phishing, man-in-the-middle (MitM) attacks, credential stuffing and push attacks.
- Remote work continues to be the main driver for passwordless authentication, especially against the backdrop of the significant increase in phishing attacks in recent years.
- Organizations face serious security gaps due to insecure authentication methods based on secret-sharing.
- A decoupled, standards-based approach that provides interoperability helps organizations reduce complexity and is key to future passwordless adoption at scale.