Account takeovers are on the rise as cybercriminals increasingly bypass traditional security defenses. According to Specops Software, attackers are leveraging phishing campaigns, session hijacking, and MFA fatigue to compromise user accounts.
The growing sophistication of these attacks has made conventional authentication methods less effective. MFA fatigue—where users are bombarded with push notifications until they approve one—has become a favored tactic. The scope of the threat is broad, affecting organizations across industries.
Technical details remain sparse in the report, but the attack vectors include credential theft via targeted phishing and interception of session tokens. Once inside, attackers can move laterally, escalate privileges, and exfiltrate data before detection.
To mitigate risk, Specops recommends implementing device trust and continuous verification. These measures ensure that a user's identity and device posture are rechecked throughout a session, not just at login. No specific patch or software update is mentioned.
The report does not attribute the rise to any specific threat group but underscores a broader trend: as defenses improve, attackers adapt. Organizations are urged to shift from static passwords to dynamic, risk-based authentication models.