Multifactor authentication (MFA for short), sometimes called two-factor authentication (2FA), is a system in which you must verify your identity in two separate ways to access an account – this may be a login password, an online account or an account to access an application. Sound annoying? It’s not that bad. Here’s an example:
After enabling MFA on a Gmail account, each time you log in, you’ll have to input your password. You then get asked to enter a six-digit code that is unique to you and changes every 20 seconds. You get this code from an app on your phone, a jump-drive-sized key fob or a program on your computer. In the above example, you use a smartphone app (there’s one for every type of device, and one app will handle the MFA codes for each individual account) and input the code. Only then do you have access to your account. You must enter both password and 2FA code each time you access the account. If someone steals your password, they still can’t access your Gmail account.
If you aren’t currently using multifactor authentication with your most sensitive data and systems, investigate if it’s an option today. The extra 15 seconds to pull up the code and get logged in is laughably short compared to the time spent dealing with a hacked account.
Have questions about cyber security or some other IT-related issues? Access our calendar here to book a quick, 10-minute call.