Ride the Lightning

Cybersecurity and Future of Law Practice Blog
by Sharon D. Nelson Esq., President of Sensei Enterprises, Inc.

Just Do It! Microsoft on Multi-Factor Authentication

August 11, 2020

Thanks to my good friend Ben Schorr for sending me an August 7 Microsoft update on why multi-factor authentication is so critical. It is short, sweet and should be read by anyone who has resisted multi-factor authentication (and there's a lot of you!).

From the post:

"When you sign into your online accounts – a process we call "authentication" – you're proving to the service that you are who you say you are. Traditionally that's been done with a username and a password. Unfortunately that's not a very good way to do it. Usernames are often easy to discover; sometimes they're just your email address. Since passwords can be hard to remember, people tend to pick simple ones, or use the same password at many different sites.

That's why almost all online services – banks, social media, shopping and yes, Microsoft 365 too – have added a way for your accounts to be more secure. You may hear it called "Two-Step Verification" or "Multifactor Authentication" but the good ones all operate off the same principle. When you sign into the account for the first time on a new device or application (like a web browser) you need more than just the username and password. You need a second thing – what we call a second "factor" – to prove who you are."

I don't want to replicate the entire post, but if you are not already an MFA convert, please read it.

Probably the most important point is that you do not need to use the second factor every time. You can make your phone and laptop "trusted devices." If the bad guys know your ID and password, but try to access your account from another device, they will need that second factor. Statistics show that using MFA stops over 99% of all account takeover attacks.

Read the post carefully – it will answer most common MFA questions. And then begin to use MFA for all your online accounts. It's almost always FREE (your favorite price, right?). Very effective too. Just do it.

Sharon D. Nelson, Esq., President, Sensei Enterprises, Inc.
3975 University Drive, Suite 225|Fairfax, VA 22030
Email: Phone: 703-359-0700
Digital Forensics/Cybersecurity/Information Technology
https://senseient.com
https://twitter.com/sharonnelsonesq
https://www.linkedin.com/in/sharondnelson
https://amazon.com/author/sharonnelson