CISA challenges partners and the public to push for ‘more than a password’ in new social media campaign
WASHINGTON – The Cybersecurity and Infrastructure Security Agency (CISA) announces a collaborative effort with industry to dramatically increase the adoption of multi-factor authentication (MFA) and ensure widespread understanding of why it is the one of the most powerful tools to prevent cyber-intrusions. Launched at the RSA 2022 conference, CISA embarks on a campaign to encourage widespread awareness and understanding of the benefits of MFA, ensure that every American knows the simple steps they can take to protect themselves online and to urge tech companies to make MFA available as a default option. CISA
More than a password The campaign includes a newly launched webpage with resources, how-to guides and social media content throughout June.
Hackers are increasingly harvesting credentials through phishing emails or by identifying reused passwords from other systems. MFA increases security because even if a credential is compromised, unauthorized users will be challenged to meet the second authentication requirement, which will greatly hinder their ability to access the device, network, or database. targeted data.
“Whether you call it multi-factor or two-factor authentication, this simple step can reduce your risk of being hacked by 99%. Think of it like an airbag or the seat belt in your car – an extra layer to protect you in the event of an accident,” said CISA director Jen Easterly. “We need to get the message across that to stay safe online, every American needs to have
More than a password on all their sensitive accounts. And if you have an account that doesn’t offer an MFA option, urge your provider to start offering this essential security feature.
There are several ways to ask you to provide a second form of authentication:
- SMS or email: When you log in to an account, you will be asked to provide a code which will be sent to you by SMS or email.
- Authenticator app: An authenticator app is an app that generates MFA login codes on your phone.
- Push notification: Instead of using a numeric code, the service “sends” a request to your phone asking if it should let you in.
- FIDO Key: FIDO stands for “Fast Identity Online” and is considered the gold standard of multi-factor authentication.
Two steps are more difficult for a hacker to compromise. Users should implement MFA on all of their sensitive accounts: email, bank accounts, social media, online stores, games, and streaming entertainment services. In addition to protecting consumers, multi-factor authentication makes it more difficult for a hacker to gain access to an organization’s information systems. It can better protect remote access technology, messaging and billing systems, even if passwords are compromised by phishing attacks or other means. On its new webpage, CISA also provides a guide for organizations that need help getting started deploying MFA for employees and customers.
Finally, CISA asks its industry partners to spread the word by ensuring that MFA is available for all services and enabled by default wherever possible. We also ask partners to share the value of MFA with customers and employees, and champion MFA on communication and social media channels. Whether you sing it, shout it, or post it in June, CISA is asking everyone to go the extra step and implement #MoreThanAPassword!
For more information visit: http://www.cisa.gov/MoreThanAPassword
As the national cyber defense agency, the Cybersecurity and Infrastructure Security Agency (CISA) leads the national effort to understand, manage, and reduce risks to the digital and physical infrastructure that Americans rely on every hour of every day. . Visit CISA.gov for more information.
Visit CISA atTwitterFacebook, LinkedIn, Instagram