Multi-factor authentication has been the cornerstone of identity security for over a decade, and its adoption has significantly reduced the success rate of credential-based attacks. However, attackers have developed increasingly sophisticated techniques to bypass MFA, and the false sense of security that MFA provides can actually increase organizational risk when employees believe their accounts are invulnerable. The most prominent MFA bypass techniques in 2026 are MFA fatigue (prompt bombing), adversary-in-the-middle (AiTM) proxy attacks, and SIM swapping. Understanding these techniques is essential for designing simulations that test real-world resilience rather than theoretical security.
What Is MFA Fatigue and How Does It Work?
MFA fatigue, also called prompt bombing or push harassment, exploits the human tendency to approve notifications to make them stop. The attacker obtains valid credentials through phishing, credential stuffing, or data breach exposure, then triggers repeated MFA push notifications to the victim's authenticator app. After receiving dozens of prompts in rapid succession, the employee approves one, either out of frustration, confusion, or the mistaken belief that approving the prompt will stop the notifications. The technique was used in several high-profile breaches in 2023 and 2024, including incidents where the attackers combined prompt bombing with social engineering, calling the victim and impersonating IT support to instruct them to approve the prompt.
How Do Adversary-in-the-Middle Attacks Bypass MFA?
Adversary-in-the-middle (AiTM) attacks, facilitated by phishing toolkits like EvilGinx2, operate a transparent proxy between the victim and the legitimate authentication server. When the employee clicks a phishing link and enters their credentials, the proxy forwards them to the real login page. When the legitimate server requests MFA, the proxy passes the challenge to the employee, who completes it normally. The proxy captures both the credentials and the authenticated session token, granting the attacker full access without ever needing to bypass MFA directly. From the employee's perspective, the login process felt completely normal, making this attack extremely difficult to detect through user awareness alone.
How Should You Simulate MFA Bypass Scenarios?
Simulating MFA bypass requires careful design to test employee awareness without compromising actual security. For MFA fatigue, simulate the social engineering component: send a simulated phishing email from fake IT support instructing the employee to approve an MFA prompt for a system update. Track how many employees follow the instruction versus how many report the suspicious request. For AiTM scenarios, simulate the initial phishing page that initiates the attack chain. Create credential-harvesting pages that mimic your SSO portal and track credential submission rates. The educational landing page should explain how AiTM attacks capture authenticated sessions and emphasize that legitimate login pages will never be reached through email links.
What Technical Controls Complement Simulation?
Simulation alone cannot prevent MFA bypass attacks. Complement your simulation program with technical controls including number matching for push notifications (requiring the user to enter a number displayed on the login screen rather than simply approving a prompt), FIDO2 and WebAuthn hardware security keys that are cryptographically bound to the legitimate domain and are immune to AiTM proxy attacks, token binding and certificate-based authentication that ties session tokens to specific devices, rate limiting on MFA prompts to prevent fatigue attacks, and conditional access policies that evaluate device posture, network location, and risk score before granting access. The combination of behavioral training through simulation and technical hardening through phishing-resistant MFA provides defense in depth against the full spectrum of MFA bypass techniques. For related content on emerging attack techniques, see our guides on AI-powered phishing attacks and executive targeting.