top of page

MFA / 2FA: Why You Need IT

Samuel Cork

Multi-Factor Authentication (MFA) and Two-Factor Authentication (2FA) are necessary security practices that must be implemented to prevent bad actors, such as hackers, from accessing an account. Multi-Factor Authentication (MFA) is the practice of having extra security layers to log in, such as a message with an extra security code. Two-Factor Authentication (2FA) is the same as MFA, however it is only when there is a single extra measure to protect an account.

You can think of it as having multiple locks or passwords for your account.

Multiple Locks
Image from Unsplash

Why MFA is Important

MFA is important because it adds an extra layer of security to your account. MFA is a way to prove you are who you say you are. Passwords alone are not always secure enough to protect you or your account.


Organizations often suffer data breaches that result in hackers getting access to your private data, including log in credentials. This data is then sold online and used against you.


When this happens, you should change your password immediately. However it is not always know when a beach happens, or you may not be aware. If this is the case, hackers, also known as bad actors, can access your account. This is where MFA comes into play. If the attacker uses your password, they will be prompted to input the randomly generated MFA code that only you have access to.


Because MFA was enabled, the attacker was not able to get access to the account and the user will be alerted of the log in attempt.



What Exactly is MFA?

MFA is an extra layer of account security. It is known as the following; Something you are, something you have or something you know. Starting with "Something you are", this would be biometric scanning, you use this more often than you think. Think about your mobile device, these phones have fingerprint or facial recognition. These are identifying factors that only you can have.


Something you have - This is a physical approach to security. This could be a key, keycard, your phone or other item. One method of MFA is SMS verification, it sends a randomly generated passcode to your mobile device to finish the login process. The phone is the item you have access to that the potential attacker does not.


Something you know - This is the generic method of accessing accounts. It is knowledge based security. The typical password you create when making an account. Typically this is the default method to log in, then you add an extra layer of security to further ensure authentication.


How to Enable MFA or 2FA

Many platforms have ways to enable MFA to secure your account. Unfortunately this is not available to all platforms or services such as Spotify.


For the platforms that care about your security, you can find a way to enable MFA in the settings, usually under privacy and security. The layout varies from platform to platform, but you will want to look for options such as; Privacy, Security, Safety, Privacy and Security, Two-Factor Authentication, Multi-Factor Authentication, Account.




Comments


bottom of page