Rethinking two-factor authentication

      Comments Off on Rethinking two-factor authentication

Rethinking two-factor authenticationWhen it comes to account security it seems that the long-touted 2-factor authentication via SMS code is no longer up to the job.

Two-factor authentication, in the form of a password and a temporary code sent to phones by SMS text message, is no longer viewed as adequately secure, following a string of incidents where codes were intercepted. This has resulted in hackers accessing the Twitter accounts of public figures to post bogus tweets using social engineering.

Help, though, is at hand as new ways are being developed which avoid the mobile SMS code dilemma altogether. Google, for instance, can now generate a unique code that matches the one on a web provider’s server, avoiding hackable communication between the two computers. This leaves platforms like Twitter, which currently only offers SMS 2-factor authentication, working to catch up.


Visit to learn more about our cyber insurance products and how we can help your business protect itself against losses arising out of cyber crime.