23 October 2024 Olivier Reuland
For this year’s Cyber Smart Week, CERT NZ (now part of NCSC) are pushing for good password hygiene, as well as the adoption of Multi-Factor Authentication (MFA).
MFA, also seen as 2FA, adds one or more additional factors to your password when protecting your account. It can take many forms: sending you a text or email with a unique code, using a separate app to approve a login or using a physical USB key, for example.
The benefit is that if your password is compromised, either via a breach or a successful phishing attack, for example, you have a second layer of protection.
As users, you should enable MFA on your accounts wherever you can to prevent them from being compromised if the service was breached, or you were the victim of a successful phishing attack.
As admins or service providers, you should enable MFA wherever you can, allowing your users to be better protected. You should also consider enforcing MFA for accounts with privileges.
Umbraco has an MFA add-on to help secure your admins' accounts and prevent your site from being compromised.
The process to enable MFA varies between providers, but it is usually straightforward to implement.
How to enable MFA on some of New Zealand's main services providers:
Umbraco offers an MFA module. We can help you set it up.
Feel free to reach out to us to learn more!
Signup here if you want to keep up with our quarterly newletter
