Passwords alone are not enough

Multi Factor Atuhentication (MFA) adds an essential layer of security to remote access.

MFA is enabled as standard on accounts for mailboxes and online collaboration services by Albacore.

MFA can also be added to remote access services, adding an aditional layer of protection when logging on to a remote device (hosted server or workstation).

Some Albacore products include this MFA service for remote access. MFA works best when enabled for all users in an organisation – all users need to have the same level of protection to increase the overall level of protection of the organisation.

Cyber Insurance policies will enquire as to which services have MFA enabled, and premiums will reduce as a result of demonstrating a secure stance.

The most important consequence of enabling MFA for as many services as possible is reducing the risk of account and data compromises. A compromised email account could result in sending malware to customer contacts and this causes inconvenience, embarassment, disruption and a loss of reputation to the business.

A compromise of a user account can be very serious, leading to potential breaches of sensitive information that must be reported to the Information Commissioners’ office, or a ransomware attack where attackers encrypt an organization’s sensitive data and demand payment to have it unlocked.

Below is a quick Q&A about MFA. Please contact Albacore if you would like to discuss implementing MFA more widely in your IT solution and we’ll work with you to find a solution that works for you.

What is Multifactor Authentication?

Multifactor authentication (MFA) adds a layer of protection to the sign-in process. When accessing accounts or apps, users provide additional identity verification, such entering a code received by SMS or email, or acknowledging a prompt in a mobile app.

Why use MFA?

If you only use a password to authenticate a user, it leaves an insecure vector for attack. If the password is weak or has been exposed elsewhere, an attacker could be using it to gain access. When you require a second form of authentication, security is increased because this additional factor isn’t something that’s easy for an attacker to obtain or duplicate.

Attackers frequently employ phishing emails or messages that look legitimate but are scams, designed to steal your personal information or money and to deceive users into disclosing their passwords. Phishing emails are on the rise. Another technique is to utilise fake login websites that mimic actual ones; users frequently find it difficult to distinguish between the two.

Using MFA means that a user’s password alone is not enough to authenticate and gain access to their account.

How does MFA work?

Multi-Factor Authentication works by requiring two or more methods of authentication: something you know, such as a password; something you have, such as a trusted device that cannot be easily duplicated, such as a phone or hardware key; and something you are – biometrics such as a fingerprint or face scan.

We recommend the Microsoft Authenticator app, available on iOS and Android. The app allows user to verify their login by acknowledging a prompt on their mobile device.

Note the app does not store personal information, track the user, record their activity, or access any other data on their device.