Two-Factor Authentication (2FA) – or multiple-factor authentication – is a safeguard for you to protect you, your company and your client’s data. It is the extra step that can prevent an attacker from accessing important data on your devices.
Instead of only logging into an account with your username and password, you must also provide a code that is commonly either texted, emailed, or sent via an automated phone call to your personal device. In addition to a code being sent by SMS or email, authenticator apps are also growing in popularity. Authenticator apps take into account that your phone or device may be stolen and that email or text codes are unencrypted and could be intercepted by a hacker. These apps offer increased protection because they often require a face ID or a new set of login credentials to access the app. The app is the main provider of the codes you need to access certain accounts.
At BerganKDV, we take many steps to keep client data secure such as patching, employee training, logging, intrusion testing and security tools but the most important is 2FA. BerganKDV requires 2FA on all our key systems that contain private information.
Why is 2FA important?
You don’t have to look too far to see the negative impact on managed service providers, companies or government agencies that have been hit with ransomware attacks. Ransomware remains the top threat for most organizations as the cybercrime industry continues to grow. Cybercrime is now a three trillion-dollar industry and as of 2020, it’s the third-largest market in the global economy.
In 2022, the average cost of a ransomware attack was $9.44 million dollars and the downtime a company experienced after an attack ranged from 7-21 days. Those are numbers that could be detrimental for some organizations, which is why it’s so crucial to use the tools available like 2FA, to keep your data as secure as possible.
How are attackers getting access?
The traditional form of account set-up includes a username and password. As attackers have become more sophisticated, they can test billions of passwords every second. And human nature works against us as well, with two-thirds of people using the same password on every account they own – both personal and work-related accounts.
What can I do to better protect my company and my employees?
- Work with a managed service provider who utilizes multiple layers of security for your data, including 2FA. Managed service providers are often allowed remote access to client data and critical systems for your organization. Make sure they are taking the proper precautions to protect your information.
- Implement 2FA for employees to access your company’s sensitive data systems as well as other platforms like Office 365. As technology advances, 2FA has become a more efficient process to set up and could require as little as less than a minute out of the day for an employee to get the appropriate verification established.
- Train your employees on how to detect things like phishing schemes and other common ploys used by hackers to gain access to your data systems. Your team needs to be a human firewall for your organization. At BerganKDV, employees participate in monthly online training sessions to make them more aware of how they can better protect themselves and our firm from attack.
How protected is your data?
At BerganKDV, our technology team is here to help you get an idea of the health of your organization’s information security. We offer a free mini-assessment that provides a comprehensive overview of your current security risks.
If you have any additional requestions regarding 2FA and how to implement a robust security strategy at your organization, we’re here to help. Let’s have a conversation.