Multi-Factor Authentication

31st July 2019

Implementing multi-factor authentication (MFA) is a business-critical imperative. 

The below advice is from our recommended cyber insurer, CFC Underwriting.

Why is this important?

The CFC Incident Response Team notes that the vast majority of claims for business email compromise (BEC) and the associated crimes that result from such a compromise (wire transfer fraud, data theft and further phishing attacks) could potentially be prevented by implementing multi-factor authentication (MFA) on email accounts and other accounts.

Due to the proliferation of modern attack methods used by cybercriminals, not using multi-factor authentication is akin to closing the door of your home but not locking it. To improve your security posture, and to bring it up-to-date to face current threats, the use of multi-factor authentication (MFA) is highly recommended.

So what is MFA?

It’s an authentication process that requires more than just a password to protect an email account or digital identity and is used to ensure that a person is who they say they are by requiring a minimum of two pieces of unique data that corroborates their identity (multi-factor authentication). This unique data comes in three forms – something you know (i.e. your password), something that you have (i.e. a one-time passcode generated by an app or hardware token), or something you are (i.e. fingerprint, retinal pattern, voice signature or facial recognition).

In the event of a password compromise, perhaps as a result of a phishing attack, it is very unlikely that the threat actor will also have the other piece of the authentication data. Therefore, the chances are that your email account or digital identity will not be compromised. It will increase your overall cybersecurity posture and will decrease the chances of reputational harm and negative business impact.

 

There are many free MPA apps and more comprehensive corporate solutions. Below are some additional resources:

Resources on how to set up MFA for Microsoft Office 365 can be found here

Resources on how to set up MFA for Google can be found here

Authentication apps such as:

Google Authenticator

LastPass Authenticator

Authy

Microsoft Authenticator

Yubico Authenticator 

are available for free for a large number of digital services.

CFC urges all policyholders to take this critical security step as soon as possible.

TH March has access to a number of specialised insurers who can provide you with access to expert advice, guidance and security strategies. Arranging BASIC or ADVANCED cyber insurance cover through TH March can go a considerable way to mitigate the risks and threats to your business. Our qualified team will provide a tailored solution specific to your business type and budget.

Don’t wait until it’s too late, get your cyber insurance quote today. Click here for more info and to obtain a FREE quote.

 

 

Read our other posts

Preparing for 2021 Cyber-security Trends

Preparing for 2021 Cyber-security Trends

2020 saw a wide range of changes and advancements in workplace technology utilisation for organisations. But as digital offerings continue to evolve, so do cyber-security threats. That’s why it’s crucial to remain up-to-date on the latest technology trends and adjust your cyber-risk management strategies accordingly. As your organisation starts to prepare for 2021, keep the […]

The Risks of Cold Stress

The Risks of Cold Stress

Workers who are required to work outdoors in cold environments for an extended period of time may be at risk for cold stress. Weather extremes, such as high winds, cold temperatures, ice, snow, sleet and freezing rain, present potential hazards to workers. Specifically, cold stress can contribute to: Hypothermia occurs when your body heat is […]

Regulatory Update – Managing Imports and Exports After Brexit

Regulatory Update – Managing Imports and Exports After Brexit

Although the UK technically left the EU in early 2020, many regulations and policies have continued to apply to employers and organisations that conduct business with partners and clients overseas. But, in 2021, there will be an abundance of changes that organisations must be prepared to make in order to be in compliance with new […]

Reducing the Risk of Slip, Trip and Fall Accidents During the Winter

Reducing the Risk of Slip, Trip and Fall Accidents During the Winter

Slips, trips and falls are already a leading cause of accidents and injuries in the workplace, but these incidents can become even more common during the winter. Falls involving employees, customers and even pedestrians who are merely walking past your business can all lead to serious injuries and legal claims. Ice and Snow During the […]

News Brief: Johnson Announces New Coronavirus Lockdown in Response to Rising Cases

News Brief: Johnson Announces New Coronavirus Lockdown in Response to Rising Cases

The UK’s new year is starting with another lockdown. On 4th January, Prime Minister Boris Johnson announced that a new lockdown will go into effect in England due to the ongoing coronavirus pandemic. The latest lockdown comes in response to a rapid rise in COVID-19 cases following the discovery of a new variant of the […]