Cyber security is one of the most important factors for any business to consider. Protecting your business information from criminals is vital for both you and your customers, and the cost of information falling into the wrong hands can be devastating.
Over the next few weeks, we will run a series of blogs on cyber security, giving helpful hints and tips, and looking at the types of services we can offer your business to ensure you are as protected as possible. Today’s blog will look at multifactor authentication.
What is Multifactor Authentication?
We’ve all been there – you do something as simple as log on to a new device, sign into a bank account or even buy something online. After signing into your account with your log in details, you must go through a second step, such as typing in a code from a text message, email or even logging into an app to confirm it is you. We’ve also all had the same thought, who else is it going to be, given I have just logged in to my account???
This is called multifactor authentication, and it is one of the most common, and secure methods for protecting your information.
Multifactor authentication adds another layer of protection to ensure that only you and your staff can log into your systems and see business information. It is a security method that asks the user for two different types of identification before accessing the system or account, and can range from:
An additional password or PIN
A confirmation code sent via another channel (text, email or app notification)
Biometric data, such as fingerprints, face recognition or retinal scans.
Whilst usernames and passwords can be used by anybody, anywhere in the world, the second layer of authentication will be something that only you and your staff should be able to provide.
Why is Multifactor Authentication important
Traditionally, accounts were authenticated with a username and password. These are still important for identifying customers, but they are not particularly secure on their own.
Usernames are often email addresses and most people tend to use easy to remember passwords. We’re not here to judge, but it is worth noting that an easy to remember password is likely also an easy to guess password. Not only that, but it is also quite common for people to reuse passwords from one platform to another – which presents an even bigger security risk if the password is ever compromised.
In the event of your password being compromised, multifactor authentication provides an extra layer of security which can stop a hacker gaining direct access to your account, even if they have discovered the password.
What to consider:
Most platforms will allow you to set up multifactor authentication in the security settings, if it is not set up by default already. You should consider setting this up on every platform you have an account with. In addition, you should also consider whether to continue with any platform which does not support multi factor authentication.
Consider also having a different password for every account you log in to, I know this can be challenging, but it will provide you with greater security against threats. These passwords should not be variations of the same password (for example putting a “1!” at the end of it), this can be easily guessed and offers little in terms of providing extra security.
If you think your business could benefit from an IT security review, get in touch with us at contact@mckeownscullin.com.
Comments