This article originally appeared on Discover & Learn on October 3, 2022.
Cybercrime is rising, affecting individuals, families and businesses alike. That’s the bad news. The good news is that being cyber safe doesn’t take a lot of work — instead, it’s a matter of knowing what to do to keep hackers and scammers out of your systems and accounts. Our Cyber Safety 101 series is designed to give you some basic tools and tips that can go a long way to protecting yourself, your family and your data in the digital world.
When you start a new job, apply for a passport or even request a library card, you typically have to show two pieces of ID to prove you’re really you. So when you make an online banking transaction or sign in to an online account that houses personal and/or sensitive information, doesn’t it make sense to show the same level of evidence to prove your identity?
This is what Two-Step Verification (a.k.a. Multi-Factor Authentication or MFA) is all about. Also referred to as 2-Factor Authentication (2FA), it requires a second piece of ID — or second factor — beyond your username and password to prove your identity before you can proceed.
The multiple factors can take several forms, but generally require that your credentials are verified using information from a range of categories, including:
- Something you know — like your password, PIN, or answers to secret questions
- Something you have — like as a text message sent to you with a code, or an app such as Google Authenticator
- Something you are — such as your fingerprint, palmprint or retina pattern
Sometimes, MFA is automatically turned on — but other times, you can choose whether to use it or not. Given that more than 80 per cent of hacking-related breaches use stolen and/or weak credentials, proactively adding a second layer of protection is a crucial extra barrier that can keep hackers at bay. In fact, MFA has been proven to stop the majority of attacks, such as phishing, spear phishing, and credential stuffing. Think of it as an extra lock on your door!
Our Cyber Security Playbook, The Vault, shows you how to turn on MFA across various platforms, to help ensure optimum cyber safety. It also contains more helpful steps and information to boost your cyber skills.
This article is intended as general information only and is not to be relied upon as constituting legal, financial or other professional advice. A professional advisor should be consulted regarding your specific situation. Information presented is believed to be factual and up-to-date but we do not guarantee its accuracy and it should not be regarded as a complete analysis of the subjects discussed. All expressions of opinion reflect the judgment of the authors as of the date of publication and are subject to change. No endorsement of any third parties or their advice, opinions, information, products or services is expressly given or implied by Royal Bank of Canada or any of its affiliates.