Stop MFA Fatigue with Number Matching & Context

MFA fatigue attacks, where users are bombarded with push notifications until they accidentally approve one, are on the rise. Microsoft Authenticator now offers two simple features that dramatically reduce this risk.

What Is It

Number Matching

Users must enter a code shown on the login screen into their Authenticator app.
Prevents blind approvals – if they didn’t initiate the login, they won’t know the code.

Additional Context

Shows location and app info in the push notification.
Helps users spot suspicious sign-in attempts.

How to Enable It

Go to Azure AD > Security > Authentication Methods > Microsoft Authenticator
Enable Number Matching and Additional Context for all users or targeted groups
Test with a pilot group before rolling out org-wide

Bonus Tip

If you’re still migrating users from SMS or voice MFA, consider automated password resets for accounts flagged as high-risk. Azure AD Conditional Access can trigger this based on sign-in risk levels.

Impact

Microsoft found that enabling both features eliminated MFA fatigue attacks in live environments. It’s a low-effort, high-impact win, especially for orgs already using Microsoft 365.

Like this 15-Minute Win? Share it with others!

Some Other Wins to Try...

Disable Email Autofill

Disabling email autofill can reduce the risk of accidentally sending sensitive information to the wrong recipient. It’s a simple but powerful tweak, especially in environments with frequent external communication or

Enforce Automatic Software Updates

Enabling automatic updates across your devices takes less than 15 minutes and dramatically shrinks your attack surface by ensuring you’re patched against known vulnerabilities.

Disable USB Auto-Run to Block Malware Entry

Disabling USB Auto-Run is a fast, effective way to reduce the risk of malware spreading via infected flash drives. It prevents Windows from automatically executing files (like autorun.inf) when a

Implementing Automatic Screen Locks

Enforcing automatic screen locks is one of the fastest, highest-impact controls you can roll out. In under 15 minutes, you can tighten your organisation’s security posture by ensuring every workstation,

At DNG Technology, we’re a small business – just like many of the clients we help. We know firsthand how hard you work to build what you have, and how devastating it would be to lose it. A cyber breach isn’t just a technical issue – it’s personal. And with an average cost per breach of $50,000 for small businesses in Australia, it’s not something anyone can afford to ignore.

We help protect your business by training your team with practical skills, real-world awareness, and everyday habits that stop 95% of the threats you’ll face before they ever become a problem. Then we fill the remaining gaps with proven security strategies, from the government’s Essential Eight to frameworks that make sure you’re covered under Australian privacy law and other compliance requirements.

If you’d like to talk through where your business might be vulnerable, and how we can help fix it, give David or Greg a call on (08) 7078 0310. We’d love to hear your story and see how we can support it.

Your cyber security risks are real

And to find out what they are, invest seven minutes in our Cyber Security Risk Assessment. We’ll email you a full set of results including your Risk Score and personalised recommendations that you can act on straight away.

There’s no cost or commitment, but it’s information every business owner needs to have.

↑