printer friendly version

Make multi-factor authentication your new year’s resolution

Roger Britz.

With SA’s Information Regulator on record as saying the country suffered at least 150 data breaches a month in 2024, South Africans must make multi-factor authentication (MFA) the non-negotiable centrepiece of their personal cybersecurity new year’s resolutions.

Data breaches were up threefold in 2024 compared to 2023, notes Roger Britz, Customer Experience Catalyst at PerfectWorx Consulting. “Keeping personal data and online accounts safe pivots on MFA. Experts agree that implementing an additional layer of security to validate user identities can block 99,9% of automated cyberattacks, which are increasingly powered by artificial intelligence (AI),” says Britz.

Although creating multiple online accounts to access content has become common, Britz advises South Africans to resist the temptation to reuse passwords. “Bad actors are noticing our country, and cyberattacks are only going to increase over the next twelve months. We must not provide cybercriminals with the means to break into multiple accounts.”

Password protection is not enough. An additional layer of security is needed and concerned end users locally and overseas are now insisting that the organisations they interact with online implement MFA or two-factor authentication (2FA). Critically, a second authentication factor helps prevent access even if one’s password has been compromised.

MFA is a multi-step account login process requiring users to enter more information than just a password. For example, along with the password, users might be asked to enter a code sent to their email, answer a secret question, or scan a fingerprint.

The factors that can be used for authentication can generally be split into three categories:

1. Knowledge factor – This is something the user will know that no one else knows. This could be the answer to a secret question like a pet’s name.

2. Possession factor – This is something that a user uniquely owns. An example of this would be physical devices like mobile phones. A notification can be sent to an authenticator application on the phone.

3. Inherence factor – This is something that is inherent to the user. Many mobile phones now allow fingerprint scanning or facial recognition as an authentication factor.

There are many options available for MFA, so it is important to do one’s homework. One option that brings many added features to the table is Cisco Duo, an MFA application from Cisco. It verifies user identities and - critically - their devices' health. Cisco Duo not only adds MFA, it also makes the user experience smoother and simpler by adapting authentication requirements based on risk level. It also adopts a Zero-Trust security stance, which assumes no user should be trusted by default.

Duo provides an easy-to-use, secure mobile authentication app for quick, push notification-based approval to verify a user’s identity with smartphone, smartwatch and security key support. Duo also offers a more secure Verified Duo Push option.

“As technology continues to grow, more and more sensitive data will be stored online in the cloud. It is, therefore, vital for businesses and individuals alike to see the coming new year as an opportunity to take all steps to ensure that their data is better secured by MFA. Remember, at the beginning of all online access is authentication,” concludes Britz.

Share this article:

Further reading: