One of the best ways you can protect access to your accounts is through multi-factor authentication (MFA). Multi-factor authentication can also be referred to as two-factor authentication (2FA). MFA is a layered approach to securing data and applications and enabling it ensures that the only person who has access to your information and applications is you.
MFA requires a user to present a combination of two or more credentials to verify a user’s identity for login. The four most common factors used in MFA are knowledge (something you know), possession (something you have), inherence (something you are), and location (where you are).
MFA can seem complex but you already use it in a variety of ways of which you may not be aware:
You can and should set up MFA on as many accounts as possible. It is becoming more and more common for companies to offer MFA to their account holders and if your accounts don’t offer it, now is a good time to ask when it will be available. You should enable MFA for accounts like online banking, email, social media, and any other service that requires you to log in.
Some people don’t enable MFA because they believe it’s going to be a hassle to log in to their accounts with it enabled. In reality, enabling MFA is usually very easy and barely adds any time to the login process.
Some examples of logging in to accounts that are set up with MFA are:
By implementing MFA, the chances of an adversary compromising an account is lowered since the username and password alone will not allow access to a targeted account. If MFA is an option on your accounts, we recommend that you enable it. The value from the time spent setting MFA up and verifying your identity when you log in to your accounts far outweighs the time you would spend recovering lost data, on the phone with your financial institution disputing charges, or reporting a stolen identity if your accounts were hacked.