The use of unrecognized devices by users can pose a potential security risk. These devices, when not properly authenticated or managed, may introduce vulnerabilities into systems, potentially compromising data and network security. It's important for organizations and individuals to be cautious and implement appropriate security measures to minimize such risks.
Most of the time, these logins happen from safe devices, albeit new ones. Maybe a user got a new phone. But in any case, they should be handled with some caution, just to be on the safe side.
We detect when a login attempt is happening from a new device. We ignore a user's signup because that is by definition always on a new device.
You can choose whether to Allow or Challenge users when trying to log in with an unfamiliar device.
When the user is Allowed, they will see no friction and be allowed to continue to the app.
If the user is Challenged they will be prompted to complete an MFA challenge.
You can choose to notify users when there is a new device on a user's account by checking the checkbox in the Portal.
If you’re curious how many times breached passwords events happen in your app, you can see them over time, along with where they happened in Security Events.
Updated 22 days ago