Techly NewsGet the app

Get the latest tech news

Why Login Failures Matter


Are you tracking your login failures? Learn about how to track them, why it matters, and what you should do to avoid login failure.

User attributes: IP address, user agent/OS, the mapped location of the IP address, time of day, type of login (social sign on, WebAuthn, magic link), which factor failed (if using multi-factor authentication aka MFA) System level events: application version, client version, external factor such as a new source of traffic or promotion Remember that an incomplete login should also count as a failure - track these too! A common security measure is to make a user click a magic link, sent to them via email or SMS, when a login looks suspicious. Unnecessary steps in the flow for security purposes will slow down the login process, leading to a higher chance of user attrition and error.

Get the Android app

Or read this on Hacker News

« Saudi’s Jameel Motors and Changan Auto Plan South African Entry
Nvidia's latest AI PC boxes sound great – for data scientists with $3k to spare »