Two Layers of Security Isn’t Enough to Keep Your Email Safe
Cybercriminals are bypassing 2FA to steal your data.
A recent report by Amnesty International revealed that two-factor authentication is vulnerable to hacking, particularly on mobile devices, leaving Yahoo and Gmail accounts particularly susceptible. The report can be alarming since two-factor authentication has long been thought to be the safest method for securing passwords. In case you’re new to learning about two-factor authentication, read on and find out the best ways to double down password security.
Read More: Is the dfndr security App Reliable?
What is Two-Factor Authentication?
Two-factor authentication (2FA), also known as multi-factor authentication (MFA) offers an extra layer of protection. In addition to a username and password, 2FA requires an additional piece of information to gain access to an account. In some cases, that involves selecting a user-chosen picture from a group of images, connecting a physical dongle or USB device to the smartphone or computer used to access the account or more commonly, using a one-time security code sent to a mobile device via SMS. These codes usually have a short time limit before they expire.
How Do Cybercriminals Corrupt 2FA?
Scammers have discovered that they can use the same techniques used to steal passwords to gain access to these texted authentication codes. Using infected phishing links, they can install malware to your phone that not only allows them to extract your email password, but to send a code to your phone which they can also be stolen with the same malware. Once access to your inbox is established, cybercriminals can look through your email for clues on other accounts connected to the hijacked email address. They can then take this information to reset passwords on other accounts and take them over including gaining access to your financial data.
Here are 4 essential tips to staying safe:
1. Start by changing your passwords often and make sure each one is unique and hard to guess. A password manager app can be used to help keep track of multiple passwords.
2. Use several different email addresses for different accounts, so all of your sensitive data isn’t associated with just one email account. That way, if one of your email addresses is compromised, the hackers don’t have access to everything.
3. Avoid saving passwords on your computer and mobile phone. While it is an inconvenience to have to enter passwords manually, it prevents thieves from getting into your accounts if your devices fall into the wrong hands.
3. Make sure you download an advanced antivirus app such as dfndr security to your device. Not only can it prevent the invasion of malware, but the anti-hacking feature alerts you to unsafe links used for phishing before you click on them.