A security team notices employees are increasingly complaining about push notifications from the company's multi-factor system. Which user behavior represents the greatest security concern in this scenario?
Users creating workarounds to access systems through alternative channels
Users disabling notification sounds on their mobile devices during work hours
Users automatically approving verification prompts without confirming they initiated the request
Users documenting verification codes on physical notes near workstations
The correct answer describes authentication fatigue (also known as MFA or 2FA fatigue), which refers to the user tendency to automatically approve verification requests due to being overwhelmed by the frequency of such prompts. This phenomenon can be exploited by attackers who repeatedly send authentication approval requests hoping users will eventually approve one just to stop the notifications. Security awareness training should address this human vulnerability by teaching users to carefully verify each request before approval, rather than becoming desensitized to security measures.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is authentication fatigue?
Open an interactive chat with Bash
How can security awareness training help mitigate authentication fatigue?
Open an interactive chat with Bash
What are some best practices for implementing multi-factor authentication (MFA)?
Open an interactive chat with Bash
ISC2 CISSP
Security Operations
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access