Tell me more about 2-factor authentication…
In this world where accounts are hacked and money is stolen digitally every day, there is a growing awareness of security. There is one answer that a lot of online providers are turning to and are hoping will solve the increased hacking activity: two-factor authentication.
What is it?
Two-factor authentication (2fa) is the process where you enter a password to access a website or application and enter a code that is emailed or texted to you, too. The idea is that if a hacker has gotten access to your password, they hopefully do not have access to your phone or email. [To read more about the best way to store passwords, click here to read our blog post about that.] In most hacking instances, the hacker is not after the individual, but rather attempting to hack multiple accounts at a time. 2fa is important for all users. But in fact, should be a rule in your company for administrators or C-level employees that have access to whole pieces of your network or resources. A hack on a low-level account may not gain the hacker very much information. But if the hacker gains access to the CEO’s account on the network, it may close the company down, at least temporarily.
Why use 2fa?
2fa is so important, as it cuts down on the chances of a brute force attack. This is where a hacker will persistently attack your account with login attempts in the hope of guessing your password. Even if they guess it correctly, they then would need access to your email or cell phone. Consider in this instance that you use the same password for your bank and your email. The hacker may try them both, get past the 2fa security, and take over your account. Even with 2fa you should have strong unique passwords. If you have trouble managing multiple, strong, unique passwords, you should get a password manager. Be sure if you get a password manager, that you use one that has 2fa.
Action Step:
You should enable 2fa on every account you have. If a provider has this as an option, you should add this now! Many financial institutions have this in place but may not require it. You may need to request it as a feature on your account. If they do not have this feature, many have fingerprint ID or face ID as an option, which gives you more security than a simple password.
Create a policy for your company that states all employees, especially key employees, have 2fa enabled on all accounts. DataCom Technologies specializes in cyber security and password security. We also include a password keeper as a part of the suite of services with the Uptime Business Class & Premium Plans. If you need help with password management, two-factor authentication, or any other questions, click here to contact us or call us at 330-680-6002.