Skip to content
NGTEdu Logo

NGTEdu

A PRODUCT OF NGTECH.CO.IN

NGTEdu Logo

NGTEdu

  • Home
  • Cyber Attacks
  • Malware
  • Vulnerabilities
  • Data Breach
  • Home
  • Data Breach
  • Save the Embarrassment: The Value of Two-Factor Authentication on Social Media
  • Data Breach

Save the Embarrassment: The Value of Two-Factor Authentication on Social Media

5 years ago Tyler Reguly
Save the Embarrassment: The Value of Two-Factor Authentication on Social Media

These days, it’s not a matter if your password will be breached but when. Major websites experience massive data breaches at an alarming rate. Have I Been Pwned currently has records from 543 sites comprising 11.4 billion accounts. This includes well-known names like Wattpad, MySpace, and Facebook. This is an 84% increase in the number of sites and a 115% increase in the number of accounts from when I published the first version of this article in 2018.

Password breaches are a cause for embarrassment. They are talked about in hushed tones just like finding mice in your home or having your credit card declined. They don’t need to be, though. They are part of the online experience associated with modern cyber life.

Instead of being embarrassed, take steps to minimize the impact that a data breach has on your life.

One of the best ways to do this is to enable two-factor (or multi-factor) authentication on the accounts that you use on a regular basis. Adding a second form of authentication (typically in the fashion of a code generated by or sent to a device you own) can ensure that no one accesses your accounts, even if they have your passwords.

Here you will find step-by-step instructions on how to configure two-factor authentication via your web browser on some of Internet’s biggest social media networks in honor of #SocialMediaDay.

TikTok

  • For this app, we’ll use the mobile settings rather than the browser settings. Click on Me at the bottom of the screen followed by the 3 dots at the top on your profile screen.
  • Select Security and login from the menu that appears
  • Select 2-step verification
  • Select a method and click Turn on.

Instagram

  • For this app, we’ll once again use the mobile settings rather than the browser settings. Click your profile icon in the bottom right, followed by the three bars in the top right. Then click Settings in the menu that pops up.
  • Next, within Settings, select Security.
  • Finally, select Two-Factor Authentication and follow the steps to enable it.

Twitter

  • Log in to Twitter, and click on …, More followed by Settings and privacy.
  • Under Security and account access, click Security.
  • Under Security, click Two-factor authentication.
  • Select the method(s) of Two-factor authentication you wish to enable. If you have an authenticator app, it should be given priority over text message; however, text message is better than nothing.

Facebook

  • Log in to Facebook and visit Settings & Privacy by clicking on the top-right menu.
  • On the left hand side, select Security and Login, and click Edit next to Use two-factor authentication
  • Set up the 2FA methods of your choice. I recommend using an Authentication App, but Text Message is an acceptable fallback.

LinkedIn

  • Log into LinkedIn and click Me and Settings & Privacy.
  • Click Sign in & security in the left hand menu.
  • Enable Two-step verification. While the Authenticator app is recommended, phone number (SMS) is an acceptable alternative.

Enabling two-factor authentication is quick and painless in most cases, although it is recommended that you print out back-up codes from sites that support it. These codes can be a life saver when it comes to websites that use authenticator applications should you lose or damage your phone.

I’d like to leave you with one final tip. I’m a big fan of using single sign-on (SSO) with websites. A lot of people question why you would want to use your Facebook, Google, or Apple account to sign into other services. I think there are three answers to that question:

  1. While this big tech companies may not care about you, they certainly invest more in security than little mom & pop websites. So, why put another password into a potentially less secure service when you can let the credentials of the larger, likely more secure service provide value?
  2. Not everyone has two-factor authentication. By using SSO, you end up with free two-factor authentication assuming you have enabled it on the service you are using for all of your SSO logins.
  3. There’s a reason enterprises use SSO. It means fewer passwords to track, fewer accounts to worry about, and an easier way to revoke the credential in the case of a breach.

Are there any websites that you’d like to enable two-factor authentication on that weren’t in the list above? Let us know on Twitter.  

The post ” Save the Embarrassment: The Value of Two-Factor Authentication on Social Media” appeared first on TripWire

Source:TripWire – Tyler Reguly

Tags: Encryption, Facebook, Google, Instagram, Privacy, TikTok, TripWire

Continue Reading

Previous Massive data leak of passwords on the dark web
Next Cobalt Strike Usage Explodes Among Cybercrooks

More Stories

  • Data Breach
  • Vulnerabilities

OpenAI Patches ChatGPT Data Exfiltration Flaw and Codex GitHub Token Vulnerability

16 hours ago [email protected] (The Hacker News)
  • Data Breach
  • Malware

DeepLoad Malware Uses ClickFix and WMI Persistence to Steal Browser Credentials

19 hours ago [email protected] (The Hacker News)
  • Cyber Attacks
  • Data Breach

Iran-Linked Hackers Breach FBI Director’s Personal Email, Hit Stryker With Wiper Attack

3 days ago [email protected] (The Hacker News)
  • Cyber Attacks
  • Data Breach

TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files

4 days ago [email protected] (The Hacker News)
  • Cyber Attacks
  • Data Breach
  • Vulnerabilities

LangChain, LangGraph Flaws Expose Files, Secrets, Databases in Widely Used AI Frameworks

4 days ago [email protected] (The Hacker News)
  • Cyber Attacks
  • Data Breach
  • Malware

WebRTC Skimmer Bypasses CSP to Steal Payment Data from E-Commerce Sites

5 days ago [email protected] (The Hacker News)

Recent Posts

  • Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account
  • OpenAI Patches ChatGPT Data Exfiltration Flaw and Codex GitHub Token Vulnerability
  • DeepLoad Malware Uses ClickFix and WMI Persistence to Steal Browser Credentials
  • ⚡ Weekly Recap: Telecom Sleeper Cells, LLM Jailbreaks, Apple Forces U.K. Age Checks and More
  • 3 SOC Process Fixes That Unlock Tier 1 Productivity

Tags

Android APT Bug CERT Cloud Compliance Coronavirus COVID-19 Critical Severity Encryption Exploit Facebook Finance Google Google Chrome Goverment Hacker Hacker News High Severity Instagram iPhone Java Linux Low Severity Malware Medium Severity Microsoft Moderate Severity Mozzila Firefox Oracle Patch Tuesday Phishing Privacy QuickHeal Ransomware RAT Sim The Hacker News Threatpost TikTok TripWire VMWARE Vulnerability Whatsapp Zoom
Copyright © 2020 All rights reserved | NGTEdu.com
This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Read More here.Cookie settingsACCEPT
Privacy & Cookies Policy

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these cookies, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may have an effect on your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Non-necessary
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.
SAVE & ACCEPT