Ways how a mobile device and authenticator app could be compromised

I'm evaluating moving to Passwordless and my company is using BYOD.
This will change my attack surface.
I'm trying to brainstorm all the possible attack vectors how someone could compromise a mobile and gain access to the authenticator app on the mobile, so I can come up with compensating and mitigating controls.
I looked at the MITRE ATT&CK mobile matrix and it only had 4 initial attack vectors, but it feels there would be many more attack vectors that a …

access app attack attack surface attack vectors authenticator authenticator app byod change compromise compromised cybersecurity device mobile mobile device moving passwordless