Your online accounts are vulnerable to hack attacks, even if you use strong passwords.
Two-factor authentication (2FA) is an extra layer of protection that can stop a cyber crook from logging in.
“It’s designed to slow them down,” said Chester Wisniewski, a principal research scientist at Sophos.
Two-factor authentication means you need something you have – such as a mobile phone – and something you know – a one-time code – to access your account. This is significantly more secure than just the password.
“A password is really just a fancy word for a secret, and having something along with it means that if somebody gets the secret, they still can’t just waltz in and take over your identity,” Wisniewski explained.
Usually, that second factor is a six-digit number sent to you via text or email. Or it could show up on an authenticator app on your phone. It could even be a call to your phone.
“It’s not entirely foolproof, but Google and Microsoft estimate that 2FA thwarts more than 99% of account takeovers,” Wisniewski told me.
If your important accounts offer two-factor authentication and it’s not already enabled, turn it on. It’s the best thing you can do to secure those accounts.
More Info: Escalated Threat of Cyber Attack Makes Good Computer Hygiene Even More Critical
