On the internet, a password is like the key to your house - it keeps all of your things safe, from your streaming movies to your banking information. Usually, a username and password gives you access to your email, financial data and health information, photos and videos, social networking sites and other accounts.
These accounts contain a tremendous amount of personal and financial information, so you don’t want that data falling into the wrong hands. According to Telesign's 2015 Consumer Account Security Report, 40 percent of respondents had experienced security incidents (such as hacked accounts, password theft or notices that their personal information had been compromised) in the past year. Additional findings:
- 8 in 10 people are worried about their online security
- 7 in 10 people no longer trust passwords to protect their online accounts
- 47 percent of people use passwords that are at least 5 years old
- 54 percent of people use five or fewer passwords across their own online lives, creating a "domino effect" that allows hackers to take down multiple accounts just by cracking one password
- 68 percent of people say they want companies to provide an extra layer of Internet security
- 86 percent of people who use two-factor authentication feel their accounts are more secure
Check out this video for an intro to all things two-factor authentication.
It’s a security tool that uses multiple verification techniques to prove that the person attempting to log in to an account is really them.
There are a variety of methods you can use to log in to an account with two-factor authentication, including
- Something you know: a password, code, passphrase or PIN
- Something you have: a physical token, chip, fob, or phone
Additional information here:
You can also think of them as deadbolts to your online house. These features significantly improve the security of your accounts because they require something only you will know or have, like a personalized code or PIN and your phone.
Even if your password gets stolen, having these services enabled will make it more difficult for someone to access your account.
Some of the most popular passwords are "password1" or "123456."And sometimes, people don't have a separate password for each account - which means if cybercriminals crack one password, they gain access to all of your online accounts.
In fact, according to a recent Pew Research Center Study, 21% of Internet users over the age of 18 have had an online account compromised. And if you use the same account (for example, your email) to manage other accounts, your risk of account hijacking or identity theft is increased.
Here’s how many services typically work:
- You enter a phone number or an alternate email. (This is a way for the online service to contact you when you want to access your account.)
- The service provider generates and sends you a verification code. This code is only good for one use – otherwise it would be just like a password!
- Once you receive the code, you enter it, along with your username and password, and gain access to your account. (This step can vary depending on the service you're using.)
Sample Social Media Content
Share these links and posts on social media the first Tuesday of each month. Be sure to use the hashtag #2FactorTuesday!
- Show your #2FA pride on #2FactorTuesday. Have you turned it on? Here's how: http://stysafe.com/1P6jVbV
- Get two steps ahead this #2FactorTuesday and turn on #2FA! #CyberAware http://ow.ly/i/duExD
- Head over @TeleSign's http://turnon2fa.com for detailed instructions. #CyberAware #2FactorTuesday
- We always encourage good #online #security practices. Turn on #2FA this #2FactorTuesday
- #2FA is a tool that uses an extra step to prove that the person logging in to an account is authorized. @stopthnkconnect #2FactorTuesday
- Good morning on this #2FactorTuesday! Have you turned on #2FA yet? #CyberAware
- It's #2FactorTuesday, have you turned on #2FA yet? #CyberAware http://ow.ly/i/dvW3j
How to Enable Two-Factor AuthenticationUse the instructions and resources below to learn how to enable two-factor authentication on popular websites and services.
Backup and Sync
- Yubico: The YubiKey is used for a range of enterprise, open source and consumer applications, including remote access and VPN, online services, computer login and password management. The YubiKey follows the FIDO Alliance's U2F standards. For more information on U2F, visit the U2F – FIDO Universal 2nd Factor page.
- TeleSign Consumer Account Security Report: Read the latest research on two-factor authentication attitudes and behaviors
- Turn It On: See step-by-step instructions on how to add two-factor authentication to more than 100 online accounts