facebook linkedin twitter

Computerware Blog

Start Using Two-Factor Authentication Everywhere, Today

Start Using Two-Factor Authentication Everywhere, Today

It can be easy to slack off when it comes to good password practices. Many users still use the same password across multiple sites and often don’t use secure passwords. Password managers make this a lot easier, but it’s really two-factor authentication (2FA) that can make all the difference. Strong, unique passwords are still important (not all accounts offer two-factor authentication) but let’s talk about why you should always enable two-factor or multifactor on all of your accounts when possible.

Getting into my programs or logged onto different websites has been easy enough by using a password management tool, especially since there are settings that can be enabled to remember a specific device. When logging on from a different device, my phone or email is immediately hit with a notification. It’s a PIN, and without the PIN there is virtually no chance of logging in. This might be annoying if my phone isn’t on me and I’m sent a text notification, but let’s be honest, I don’t go anywhere without my phone, it’s my most valuable tool. 

So, you might have tried 2FA before or you might have been endlessly hitting the “ask me later” option that you are prompted with on new software that implemented the additional authentication measures. Whether you decide to use it or not there is one indisputable statement regarding this feature: two-factor authentication makes your accounts more secure. 

What Is Two-Factor Authentication

Even if you haven’t used 2FA, you’ve probably seen it in action. In fact, many sites, like bank accounts, Google, and Facebook might force a type of 2FA on you. If you’ve ever logged into a website from a different computer and then received an email or notification on your phone that a login from an unknown location just happened - that’s two-factor authentication. Albeit, it’s the reactive version that doesn’t do much to prevent others from gaining access to your information. Let’s not rely on being reactive, and look at true two-factor authentication.

By definition, two-factor or multi-factor authentication is an authentication method in which a computer user is granted access only after successfully presenting two pieces of evidence to an authentication mechanism: knowledge, and possession.

Knowledge: This is your password. You’ve memorized it or stored it securely in a password manager. The idea is that only you know it or have access to that information. In events where you don’t know your password, some sites might also accept your full email address or phone number in order to reset your password.

Possession: This is something that you own and almost always have in your possession. This is typically your smartphone, but other methods might have you carrying around a USB thumb drive or an electronic key that generates a random number.

The instantaneous code that is sent provides one more feature. It acts as an informant. If somebody were to log into one of my accounts with my password, I would find out instantly. Even then, they wouldn’t be able to get the PIN from my text message or authenticator app to finish the login process. This tells me I should change my password immediately, but otherwise my account should be safe.

Don’t Assume You are Safe

Enabling two-factor authentication won’t entirely protect you from threats or breaches. If you have two-factor set up on Facebook, Facebook can still get breached and passwords could be stolen. We see this happen all the time, with high profile attacks on large online entities stealing millions of records in a shot.

Following the other password best practices, like using strong passwords and never using the same password on two accounts is critical.

Recently, we saw the launch of Disney+, and it was reported that several thousand users had their brand-new accounts hijacked within hours of the launch of the service. This wasn’t because Disney was hacked; hackers just attempted to log in to steal accounts with emails and passwords they already had from some other data breach. 

Phishing attacks are plaguing millions of inboxes every single day. These attacks replicate the website in which they are impersonating, with a realistic login screen. Users are tricked to go there, fill in their information, and the credentials are directly sent to the cybercriminals.

As previously mentioned, 2FA isn’t the fix-all to cybersecurity. It does however put one more step between you and an ill-willed cybercriminal. Computerware has many more tips to help your business become more secure. If you would like to talk to one of our experts, give us a call at (703) 821-8200. 

A Recent Data Theft Shows Us What to Watch Out For
Examining the Relationship Between Professional Se...
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Sunday, January 26, 2020

Captcha Image

Mobile? Grab this Article!

QR-Code dieser Seite

Tag Cloud

Security Tip of the Week Technology Best Practices Privacy Business Computing Internet Cloud Software Business Management Hackers Data Microsoft Hardware Workplace Tips Backup Network Security Managed Service Provider Business Productivity Hosted Solutions Email Malware IT Services Saving Money Efficiency Productivity Computer Google User Tips IT Support Smartphones Innovation Small Business Mobile Devices Quick Tips Data Backup VoIP IT Support Collaboration Network Gadgets Microsoft Office Business Continuity communications Data Recovery Social Media Android Upgrade Disaster Recovery Server Cybersecurity Mobile Office Communication Virtualization Smartphone Mobile Device Management Miscellaneous Phishing Holiday Ransomware Tech Term Operating System Windows 10 Passwords Windows Managed IT Services Unified Threat Management Vendor Management Remote Monitoring Apps Facebook Outsourced IT Automation Internet of Things BDR Mobile Device Users BYOD Remote Computing Managed IT services Apple Mobile Computing Analytics WiFi Data Management History Artificial Intelligence Windows 10 The Internet of Things Marketing Browser Save Money Firewall Alert App Cloud Computing Big data Help Desk Two-factor Authentication Bandwidth Business Technology IT Consultant Encryption Spam Office 365 Training Antivirus Printer Gmail Government Office Health Cybercrime Content Filtering Information Technology Going Green Hard Drives Bring Your Own Device Maintenance Saving Time Computers Search VPN Virus Windows 7 Tech Support Managed Service Managed IT Employer-Employee Relationship Retail Lithium-ion Battery Best Practice Cost Management Information Outlook Windows 8 Hiring/Firing Access Control Budget Wireless Technology Customer Service It Management Travel Blockchain Education Data Loss Recovery Update Phone System iPhone Networking Hacking Project Management IBM Money Document Management Healthcare Humor File Sharing Administration Law Enforcement Applications Hard Drive Intranet Twitter Compliance Mobility Website Patch Management Solid State Drive Data storage Avoiding Downtime Conferencing Risk Management Data Breach Current Events Value Password Save Time Legal Hacker Downtime Customer Relationship Management Regulations Augmented Reality PowerPoint Proactive IT SaaS Computing Running Cable Social Robot Wireless Data Security Securty Google Maps DDoS Storage Social Engineering Scam Black Market Flexibility Word Voice over Internet Protocol Cryptocurrency Laptop Monitoring Business Growth Business Intelligence Private Cloud Cortana Excel Digital Digital Payment Telephony Websites Router Management Machine Learning Paperless Office Vulnerabilities Fax Server Telephone Systems Comparison Tablet Sports Cooperation Company Culture Vendor Disaster User Computer Repair Hosted Solution Virtual Desktop End of Support Social Networking Identity Theft Statistics Bitcoin Programming Data Protection IT service Network Congestion Documents Teamwork Heating/Cooling Distribution Entertainment Virtual Reality Downloads Politics Professional Services Inbound Marketing Emails Bluetooth Streaming Media Automobile Chromebook Computing Infrastructure Hack Redundancy eWaste Google Docs Net Neutrality Meetings Pain Points Memory How To Experience Chrome User Error Download Evernote Co-managed IT Wi-Fi Monitors Virtual Assistant Cleaning Office Tips Multi-factor Authentication Start Menu Tech Terms Computer Accessories Microchip Taxes Telephone Processors Lifestyle Distributed Denial of Service USB Managed IT Service Mobile Technology YouTube Trending Presentation Gaming Console Software as a Service Unified Communications Settings Uninterrupted Power Supply Mouse Public Cloud Licensing Webcam Processor Specifications Safety Text Messaging Vulnerability Unified Threat Management Backup and Disaster Recovery Microserver Sync External Harddrive Browsers Electricity Printing Username Medical IT Trend Micro Permissions Language Memes User Tip Proactive Maintenance Gamification Notifications CCTV Digital Signature Security Cameras Threats Point of Contact Screen Reader Customer Resource management Music Piracy Get More Done Upload Business Metrics Computer Malfunction Navigation Thin CLient Virtual Machine cache Television switches Writing Smart Tech Reliable Computing 3D Solutions Ebay Fiber-Optic Database Turn Key In Internet of Things Smart Phones Data Analysis Employees WannaCry Upgrades HTML Printer Server eCommerce IT PDF SQL Server Corporate Profile Recycling Mobile Security Trojan GDPR Managing Risk Time Management Freedom of Information LiFi Analytic Telephone System Software License Trends Motion Sickness Best Available Keyboard Tech Leadership Hypervisor Assessment SharePoint Product Reviews Multi-Factor Security Organize Cost Scalability Adminstration Integration Pirating Information Read Fraud Tactics Fileless Malware Hybrid Cloud Google Calendar Deep Learning Devices Messenger Tracking Domains Holidays Tip of the week Work/Life Balance Smart Devices Proxy Server Azure VoIP UTM Content Rental Service Public Speaking Modem Strategy Touchscreen News Visible Light Communication Knowledge Device Management IT Plan Enterprise Resource Planning Web Server Shortcut Term Managed Services Provider Consultation IT consulting Legislation Error Cabling Electronic Medical Records Transportation Content Management Communitications email scam Addiction Administrator Entrepreneur Directions Display Technology Tips Business Managemenet Accountants Webinar A.I. Books Workers Troubleshooting Recording Optimization Environment Dark Web Free Resource Audit CIO Supercomputer HIPAA Upselling SSID How To Fake News Advertising Flash Employee/Employer Relationship Video Surveillance Staffing Google Wallet online Currency Migration Connected Devices Competition Processing Managed Services Data Warehousing Windows XP Wireless Headphones Worker Electronic Payment Health IT Network Management Saving ZTime Wasting Time Access Displays Equifax Fleet Tracking Reading Samsung Business Owner Logistics Virtual Machines Emergency Hard Drive Disposal Society G Suite Bookmark Computer Care Micrsooft LinkedIn Device security MSP Employer Employee Relationship IP Address Cyber security Microsoft Excel Employer/Employee Relationships Debate Drones Desktop Best Practives Finance Hacks Physical Security Application Harddrive Google Play Telephone Service Google Drive Windows Server 2008 Nanotechnology Social Network Human Resources Archive Business Cards Service Level Agreement Banking Botnet Managing Costs Spyware Mobile Payment Skype Startup Asset Tracking Relocation Tablets GPS Microsoft 365 Financial Printers Managing Stress CrashOverride Regulation 3D Printing Capital IT Assessment Personal Information Productuvuty

toner1