How Multifactor Authentication (MFA) Can Help Protect Against Cyber Threats [Video]
Cyber crime is an ongoing threat for organisations, with incidents such as ransomware attacks, fraudulent sign-in attempts and breaches due to stolen credentials continuing to rise. And no organisation is safe – cyber criminals target businesses large, small and even at a personal level. The National Fraud Intelligence Bureau (NFIB) reported a 31% increase in “Hacking – personal” offences referred by Action Fraud (from 4,065 to 5,336 offences). 1
Now more than ever, organisations need to take all necessary precautions to secure their systems and data. Passwords alone are not enough. Multifactor authentication (MFA) can help stop cyber attacks in their tracks, blocking 99.9% of account-compromising attacks.2
What is MFA?
MFA is a security method that requires the use of two or more authentication factors to verify a user’s identity. MFA is often used to verify users who are accessing an organisation’s network or their email remotely, or accessing privileged or administrative accounts. MFA provides greater assurance that users are who they say they are and helps keep data and business systems safe even if one set of credentials (such as a user ID and password) has been compromised.
How does MFA work?
To verify a user’s identity prior to granting access, MFA uses authentication factors that fall into at least two of three categories:
- Knowledge– Something only the user knows, such as a password, PIN or answers to personal security questions.
- Possession– Something only the user has, such as their smartphone, a smart card or a software token.
- Biometric– Something that is unique to the user, such as a fingerprint or retinal scan.
For example, when logging in to an organisation’s network, the first authentication factor may be the user’s standard username and password credentials. The second factor may include a one-time passcode sent to the user’s smartphone, which can only be accessed by using a third factor, such as a matching fingerprint.
As a general rule, the more authentication factors required, the more robust the security. MFA also requires that these authentication factors be independent of one another. If one factor grants access to another factor, the integrity of the structure could be compromised.
Why should you use MFA in your business?
The average cost of a data breach was $3.86 million in 2020,3 which is a concerning factor for organisations of all sizes. MFA can be a strong component of an organisation’s security strategy for many reasons:
- Limits digital credential theft. MFA makes it more difficult for criminals to steal digital credentials and limits the usefulness of the stolen credentials. Even if a hacker gains access to your employees’ usernames and passwords, they’re unlikely to have access to the additional factors required to log in, such as the user’s fingerprint or the smartphone to which a one-time passcode has been sent.
- Strengthens existing systems. Other cybersecurity solutions, such as firewalls and anti-virus protection, are only as strong as the authentication steps that protect them. MFA helps make existing security systems stronger.
- Protects high-value targets. Administrative and executive accounts are high-value targets for hackers seeking to gain broader access to a network - and the sensitive business information contained therein. MFA can be used specifically to protect these accounts.
- Deters cyber exploits. Cyber crime involves more than stealing information. With MFA, you can also deter hackers from destroying data, deploying ransomware, changing programs and transmitting spam or malicious code throughout an organisation’s systems.
- Secures email access. Intruders often use email access to carry out cyber schemes against businesses, their clients and customers. MFA can help minimise the risk of criminals gaining remote access to a user’s corporate email account.
How can your business get started with MFA?
An organisation should be clear about what they want to protect and know that there is flexibility regarding which authentication factors can be used without unduly inconveniencing their users.
Travelers can help you build a strong security program with flexible insurance options and policyholder benefits that includes pre-breach services and access to other cybersecurity resources.
Sources:
1 https://www.ons.gov.uk/peoplepopulationandcommunity/crimeandjustice/bulletins/crimeinenglandandwales/yearendingjune2021#computer-misuse
2 https://www.microsoft.com/security/blog/2019/08/20/one-simple-action-you-can-take-to-prevent-99-9-percent-of-account-attacks
3 https://www.ibm.com/security/data-breach
Customers
For more information about how to protect yourself from Cyber attacks or to access policy holder benefits such as the eRiskHub please click the button below.
CyberRisk HubBrokers
If you’re interested in receiving a quotation or would like to learn more about our capabilities, request a call back from our Cyber Experts below.
Contact us