Guide to Two Factor Authentication…

I’ve had a lot of questions recently about account security, whether it be email accounts, remote desktop. TeamViewer, desktops etc. The number one question I’m asked is:

These days, it doesn’t matter how good your password is, that isn’t the problem we’re addressing with 2FA. Your password could be 500 characters long and still be vulnerable through no fault of your own. How??

Some companies don’t treat your password with respect (I’m looking at you LinkedIn/Adobe). It’s as simple as that I’m afraid. You did nothing wrong, but you are the one paying the price. Your password may have been stored in plain text (not unheard of even in todays climate) or they may have used insecure data practices by not salting/hashing (that means every password is different, even if they’re the same). 

They open YOU up to attacks on any other account that uses that same password (or some variation). I’ll discuss a good digital security strategy in an upcoming article, but there is something you can do to protect yourself today. 

What is Two Factor Authentication?

Two factor authentication requires two pieces of information. Your username/password and an additional code. This code can be delivered to your phone, email or in the mail. Either way, there has to be an extra step to get into the account in question. 

For example:

• Log into Amazon with your username/password. 
• Amazon sends you an SMS with a code in it. 
• You type in the code.

How does this really protect you?

Well, you have to have access to said device/email account to get in. That’s why you should ALWAYS use a completely unique password for your email account.  

So I can reuse passwords?

NO!! 

But, 2FA?

Two factor authentication only protects that 2FA accounts. Not all services offer 2FA, and hackers will try all kinds of accounts once they have your password. It could be your Playstation account where they use your card to buy digital gift cards etc. Just don’t do it. 

Should I use 2FA when available?

Absolutely yes. 

Conclusion

2FA is a small part of your digital security plan. I’ll discuss the other elements in upcoming articles. but 2FA is a great start to getting your really important accounts secured.