“We detected an unusual login attempt on your account…”
How multi-factor authentication reduces the risk of your private information being stolen by cyber criminals.
From phishing to cracking, there are plenty of methods cyber criminals can use to steal data, such as your passwords. Once a cyber criminal has this information, they can use it to access more private data and carry out further attacks.
By using multi-factor authentication, you are far less likely to become a victim of these types of cyber attacks.
But what is multi-factor authentication? And how does it prevent someone from gaining access to your private information? Read our useful guide on multi-factor authentication, so you will be safe when a cyber criminal comes knocking.
What is multi-factor authentication?
When you sign into an online account, you are normally required to enter your email (or username) and password to gain access.
Multi factor authentication (MFA) takes this process one step further by asking for one or more extra pieces of login information such as a PIN, authentication code or answer to a secret question.
This is why multi-factor authentication can also be referred to as two-step verification or 2-factor authentication (2FA).
Why should we use multi-factor authentication?
Creating an extra step of verification greatly reduces the risk of password and data theft. Without this extra step, cyber criminals may be able to guess your password, access your account, and steal your private data!
Some ways in which your login information can be stolen include:
- Using social engineering tactics such as phishing to take account details from users.
- Attempting to log into many accounts using common passwords – this is known as password spraying.
- Trying passwords from leaked data – which is why you should always use different passwords for each online account.
Even after using one of these methods to try and steal your information, an account protected with multi-factor authentication is less likely to be compromised.
However, even if someone has unsuccessfully attempted to gain access to your account, it is still a good idea to change your password.
What are some examples of multi-factor authentication?
There are many types of multi-factor authentication methods out there. Most methods are based around these 3 factors:
- Knowledge - Things you know, such as password or PIN.
- Possession - Things you have, such as a phone or email address.
- Inherence - Things you are, such as face recognition or fingerprint scans.
One of the most popular and safest methods of multi-factor authentication are one-time passwords (OTP). This method will send you a 4–8-digit code to your phone, email or some other account. These codes are also often time sensitive, so if you don’t use them within a certain amount of time, they become invalid.
We hope we’ve convinced you of the importance of multi-factor authentication. If you’d like to learn more about the techniques cyber attackers use to access your private information, try them out for yourself in CyberStart Game!