top of page
Search

Two factor authentication - why do we care?

  • Writer: Anything Tech
    Anything Tech
  • Nov 27
  • 2 min read

I trust you are staying warm in the rather chilly weather we’re currently experiencing. I’m writing this newsletter wearing a dressing gown over my regular outdoor clothes - can recommend for an instant hit of warmth! 

 

Thank you for all the lovely feedback about the first occasional newsletter - I really enjoyed hearing from you.

 

Tech Tip #2

The topic of this weighty epistle is two-factor authentication. This is a phrase bandied around a lot, and it refers to allowing organisations to check your account details twice (that’s the “two” part) using two different methods. It's sort of like having a door with 2 locks.


ree

 

What does this mean? 

When you log in to an account (for this example, let’s say it’s an account with a bank called CheeseBank), the organisation asks you to authenticate the login information by putting in a password. 

 

CheeseBank will then check its records for the login and the password associated with your account, and if they match, you can proceed. 

 

Now, if you have two-factor authentication turned on, CheeseBank will say “hmm, I’ve checked once that the login and password match, but to be extra certain, I’m going to check with a different method that this really is the person who says they are logging in (and not a nefarious bot)”. 

 

At this point, you might receive an SMS with a code in it, or perhaps you'll find the code within an authenticator app.

 

So two-factor authentication just means that the organisation checks twice that you are who you say you are when you log in to your account. 

 

Why is this important? 

You might be thinking at this point “gee, this seems like a lot of faff - do I really need to turn it on for all my accounts?”. 

 

The answer is yes!

 

Let’s imagine that a malicious individual/bot manages to guess your password, and tries to hack into your CheeseBank account. If you have two-factor authentication turned on, at this point in the process you will receive an SMS with a code for a login you haven’t authorised! Warning Bells sound! Alert the hounds! And the hacker is stopped - as they are prompted for a code they can’t receive. 

 

If no two-factor authentication turned on, the nefarious individual/bot gains access to all your wealth (cheddar) in your CheeseBank account. 

 

Not every organisation offers two-factor authentication, but some common ones which do include: 

  • MyGov

  • Bank accounts

  • Superannuation accounts

  • Phone and internet accounts

  • Social media (Facebook, Instagram etc.) 

  • Electricity/Gas/Water accounts 

  • Insurance accounts 

Some organisations make it mandatory (e.g. banks), but for most you have to deliberately turn it on. It’s a setting that should be in Security or Privacy. If you’re not sure if your organisation offers it, then just google “[organisation name] how to turn on two-factor authentication” . 

 

If you’re updating the password, this is a perfect time to switch on two-factor authentication 😊 

 

Good luck, happy two-factor authenticating and stay warm! 

 

Ruth 


 
 
 

Comments

bottom of page