2 factor authentication: keeping your data safe

by Chris Green, Tech Advisor

We’ve all encountered individuals that have attempted to gain sensitive information from us to commit fraudulent activity.  You will have received calls from people pretending to be your internet/telephone provider, bank or maybe even Amazon.  They all have one task in mind which is to extract that valuable data from you.  This could be conducted over several different calls to build trust and acceptance that you are speaking to who they say they are.  

An important thing to remember is that companies (including your bank and utility providers) will very rarely contact you over the phone.  You should never feel pressurized to reveal any information over the phone.  Here’s what some of these organizations say:

Santander

Anyone can be easily impersonated, and criminals can make the caller ID, email address or name look exactly like the genuine caller. So, if you receive an email, text or call, verify it’s genuine by phoning them back on a known and trusted number.

Amazon

Amazon will never ask for payment or offer you a refund you do not expect.

BT

If the caller sounds urgent or threatening, they ask for remote access to your computer, they ask for personal details, passwords or bank details then hang up. 

If the above sounds familiar and you fear you may have revealed personal information to a stranger then you can take some steps to protect yourself.  

  1. Change your email account password first
  2. Change all other passwords (this should be done regularly to maintain security) 
  3. Ensure that your contact details are correct for these accounts, especially your mobile phone/home number and backup email address (if you have one)
  4. Enable 2-factor authentication where possible

photo of a lady sat at a desk looking at things on a laptop with her smart phone nearby

 

What is 2-factor authentication?

The phrase ‘2-factor authentication’ sounds complex to many users. Chances are you have already used it in some way, but didn’t know it was called that. You might also hear it called “multi-factor authentication” or “2 step verification”.

Basically, it means that before you can access some services, you need to provide two different pieces of information. Examples might include:

Authentication types

Examples

Something you know

account name, passwordemail account

Something in your possession

security key, application, code

Some physical attribute

fingerprint, facial recognition

This means that if someone has managed to gain your password then they would also need your device or a fingerprint to get any further making it highly unlikely they can successfully complete both two steps. 

If you’d like to activate 2-step verification on your devices, or would like to have a chat about how to best manage the security of your data then please get in touch with one of our tech advisors.