Hackers want your passwords; help thwart them with 2-factor authentication

Posted By David Pollino In Your Finances | 8 Comments

Hackers can easily work out passwords, as many are able to test billions of combinations in just a few seconds.

Asian man sitting at table outside using his laptop and checking a text message on his phone. [1]Two-factor authentication (2FA) offers another line of defense, so I set it up for my online accounts whenever I can, and I recommend you do, too.

2FA, also known as multiple-step verification, is a log-in method that requires two different ways of proving your identity. There are three types of authentication factors:

  • Something you know – A password, a PIN code, or an answer to a question.
  • Something you have – A physical device such as a mobile phone or a token.
  • Something about you – A biological factor (e.g., face or voice recognition, fingerprint).

Once you’ve entered your user name and password as part of your log-in, 2FA reconfirms your identity by building in a further step. You may be using some kind of 2FA already, the most common method being a one-time code sent to your mobile phone, which you then need to enter online. But 2FA processes can vary, so you’ll need to visit the websites you use to see what they offer. Look for the additional security features available to you. And don’t forget to always use strong passwords [2] and to change them regularly.

What should you use 2FA for? Ideally:

  • Accounts where you store any type of personal information.
  • Accounts with payment information linked to them.

These might include accounts such as Facebook, Twitter, Gmail, online banking, shopping accounts, and cloud storage accounts such as iCloud and Dropbox. Bank of the West applies multi-factor authentication on a risk-assessed basis, so customers do not need to turn on this security feature themselves.

If you have multiple accounts with 2FA, you can use a mobile app to generate codes instead of receiving multiple SMSs. These apps might include Google Authenticator [3] or Microsoft Authenticator [4]. After the initial set-up, you can use the app without a network connection.

While setting up 2FA doesn’t mean your accounts become immune to cybercriminals, it does make them harder targets. So help protect yourself by setting up 2FA – it’s an important step to help thwart the hackers. For further reading, take a look at my earlier post on 2FA [5].


Article printed from Bank of the West: https://changematters.bankofthewest.com

URL to article: https://changematters.bankofthewest.com/2016/11/02/hackers-want-passwords-help-thwart-2-factor-authentication/

URLs in this post:

[1] Image: http://blog.bankofthewest.com/wp-content/uploads/2016/11/2_factor_authentication_crop.jpg

[2] use strong passwords: http://blog.bankofthewest.com/blog/2015/05/18/4-tips-to-help-create-stronger-passwords-for-online-security/

[3] Google Authenticator: https://support.google.com/accounts/answer/1066447?hl=en

[4] Microsoft Authenticator: https://www.microsoft.com/en-us/store/p/authenticator/9wzdncrfj3rj

[5] my earlier post on 2FA: http://blog.bankofthewest.com/blog/2014/04/08/use-2-factor-authentication-email/

Submit an Idea

[contact-form-7 id="32" title="Share An Idea"]

You are leaving the Bank of the West Change Matters site. Please be aware: The website you are about to enter is not operated by Bank of the West. Bank of the West does not endorse the content of this website and makes no warranty as to the accuracy of content or functionality of this website. The privacy and security policies of the site may differ from those practiced by Bank of the West. To proceed to this website, click OK, or hit Cancel to remain on the Bank of the West Change Matters site.