How to outsmart criminal hackers by locking them out of your digital accounts

How secure are your online accounts? Do you use the same password for everything?

Using the same password for everything is a bad idea because it makes it easier for hackers to access your accounts. If one of your accounts gets compromised, the hacker can use your password to try to break into your other accounts.

That’s why you need to use different and strong passwords for each account and change them regularly. Passwords alone are not enough to protect your online identity.  You also need to use an extra layer of security or multi-factor authentication apps.

This is a definitely topic Kathy wants to know more about, as she emailed us asking,

Can you provide more information about multi-factor authenticator apps to use to enhance account security? Also why do banks favor SMS texts for two-factor authentication when they appear to be the riskiest to use? What’s better, authenticator apps or physical security keys? Is there a one-size fits-all solution to use across all accounts? Thank you!

-Kathy

These are all great questions, and I want to go through each one step-by-step to make sure everyone has a full understanding of two-factor authentication apps and which are the best to use.

 

What is the difference between multi-factor authentication and two-factor authentication?

The difference between multi-factor authentication (MFA) and two-factor authentication (2FA)  is that multi-factor authentication can use more than two factors to verify your identity, while two-factor authentication always uses exactly two factors.

Two-factor authentication is a type of MFA that requires you to provide two authentication factors to verify your identity when logging in. An example is when you use Facebook. You can enable two-factor authentication in the settings so that every time you log in, you need to provide your password and a code. This way, even if someone knows your password, they can’t access your Facebook account without the second factor.

MORE: APPLE’S REPLACEMENT FOR THE PASSWORD 

 

Which type of multi-factor authentication is best to use?

Not every website and app supports all types of multi-factor authentication, so the one you use may have to depend on which account you’re trying to log into and what type is supported.

Overall, different types of multi-factor authentication have different advantages and disadvantages, depending on the level of security, convenience, and compatibility you need.

A physical security key

A physical security key is probably the most secure option because it is immune to many types of attacks, such as phishing and malware. However, it is not very convenient, as you have to carry it around with you, and not every website and app supports it.

Plus, if you lose it, you may not be able to access your accounts unless you have a backup method or a recovery code. Therefore, you should always keep your security key in a safe place and have a plan in case you lose it.

SMS text message

An SMS text message is probably the least secure option, as hackers can intercept and redirect those messages. However, it’s widely supported and easy to use, especially for people who do not have a smartphone or an authenticator app.

An authenticator app

An authenticator app is a good balance between security and convenience, as it is less likely to be hacked and can be downloaded to your phone. However, not every website and app supports it, and you may need to have internet access or cell service to use it.

MORE: ARE YOUR PASSWORDS SAFE? 

 

What are some good authenticator apps I can use?

The most important thing is to use multi-factor authentication whenever possible, as it adds that extra layer of protection to your online identity. Here are some highly-rated authenticator apps you can use for multi-factor authentication, and they each can be downloaded on iPhone and Android phones.

 

Microsoft Authenticator

iPhone: 4.8 stars (at the time of publishing) 

Android: 4.7 stars (at the time of publishing) 

Credit: Microsoft

The Microsoft Authenticator app gives you an easy, secure sign-in experience for all your accounts and gives you additional account management options for your Microsoft personal, work, and school accounts.

It can use multi-factor authentication with a one-time passcode, can go password-less by using your phone instead of a password to log in, or can use autofill passwords for you. It’s easy to use and can keep multiple accounts safe and secure for you.

 

Twilio Authy

iPhone: 4.7 stars (at the time of publishing) 

Android: 4.2 stars (at the time of publishing) 

Credit: Authy

Twilio Authy is another great app that you can use for all your accounts, including Facebook, Dropbox, Amazon, Gmail, and thousands more. It provides secure cloud-encrypted backups so that you will never lose access to your accounts, even if you lose your device.

The app uses the same algorithms as many banks and the NSA use to protect their information, so you can pretty much guarantee that you’ll be safe. Plus, you can even use it if you’re offline or in airplane mode.

 

Google Authenticator

iPhone: 4.8 stars (at the time of publishing) 

Android: 3.6 stars (at the time of publishing) 

Credit: Google

The Google Authenticator app will give you an extra layer of security for your online apps. You can sync your authenticator codes to your Google Account and across your devices.

It offers support for multiple accounts, and you can transfer accounts between devices by using a QR code. Plus, you can choose the type of code generation used that best suits your needs, and it works without a network or cellular connection.

 

Aegis Authenticator

Android: 4.7 stars (at the time of publishing) 

Credit: Aegis

The Aegis Authenticator app is a free option for Android users. It is a great app to protect your online accounts from hackers and phishing.

It adds an extra layer of security by generating one-time codes that you need to enter alone with your password. This way, even if a hacker steals your password, they won’t be able to access your account with your phone.

The Aegis Authenticator app also lets you customize and organize your accounts, backup and restore your data, and use it offline.

MORE: HOW TO PASSWORD-PROTECT YOUR EMAIL MESSAGES

 

Kurt’s key takeaways

Multi-factor authentication is a must-have to protect your online security. It adds an extra layer of protection to your accounts, making it harder for hackers to access them.

You can use different methods of MFA, such as an authentication app, a physical security key, or an SMS text message. Each one has its pros and cons, so you need to decide which one suits your needs and preferences.

Don’t forget to use different and strong passwords for each account and change them regularly. Also, c

et us know by commenting below.

FOR MORE OF MY TECH TIPS & SECURITY ALERTS, SUBSCRIBE TO MY FREE CYBERGUY REPORT NEWSLETTER HERE

 

Related:

 

Related posts

How to protect your deliveries from getting stolen by porch pirates

How to keep your browsing history private

How your browser is spying on you. Hidden dangers lurking behind every click

2 comments

Jeannine C October 2, 2024 - 7:15 am
Changing phones with the Microsoft Authenticator App became a nightmare. I didn't know how to set iCloud backup before I transitioned from the old phone to a new one, then the app became synced to my business account on my new phone and I can't add the old account into the new one. I will have to keep the old phone so I can still access all those sites with 2FA. It's a nightmare.
Kurt Knutsson October 2, 2024 - 10:00 am
Hi Jeannine, transitioning to a new phone with the Microsoft Authenticator app can indeed be tricky. Here are some steps you can follow to resolve this issue:

1. Enable iCloud Backup on Your Old Phone: - Open the Microsoft Authenticator app on your old phone. - Tap the three vertical dots at the top right and select **Settings**. - In the **Backup** section, toggle on **iCloud Backup**.

2. Restore from Backup on Your New Phone: - Install the Microsoft Authenticator app on your new phone. - Open the app and select **Begin Recovery**. - Sign in with the same Microsoft account you used for the backup on your old phone.

3. Revalidate Accounts: - Some accounts may require revalidation. This could involve signing in to those accounts or scanning a QR code again.

4. Add Business Account Separately: - If your business account is already synced, you can add your old accounts separately by following the recovery process mentioned above.

5. Remove Accounts from Old Phone: - Once you have successfully transferred all your accounts to the new phone, you can remove them from the old phone.

If you still face issues, you might find this video tutorial. It walks through the process of setting up the Microsoft Authenticator on a new phone:

Add Comment