Have you got Multi-factor authentication enabled on your Microsoft account?
Why do we need this enabled?
99% of comprised Microsoft accounts lack MFA. Every month too few customers are using MFA, we are getting daily calls asking us to enable this as an extra layer of protection to their Microsoft accounts.
Accounts that lack MFA tend to fall victim to “Password-Spraying” attacks, this is where the attacker tries to sign in with a collection of common passwords.
Another big problem is that users reuse passwords which allows attackers to attempt to use credentials that are stolen from another site in the hope of finding a match.
What to do?
There are three simple steps to secure your account.
- Picking strong passwords – make your password hard to guess, make it long and complex (use upper, lower case, digits and punctuation).
- Turn on MFA – if a website gives you the option of using MFA, use it.
- Use a password manager – these can create strong, unique passwords for each site then store and auto-fill the information.
Microsoft offer their users 3 choices of MFA methods, which are:
- Phone call – a robot will call the chosen phone number to call and give you a code.
- Text – you will receive a text with a 6 digit code that you will need to enter onto the Sign-in page to gain access
- App – Microsoft have an app to install on your smartphone, which will generate a code to get access to your Microsoft account.
We highly recommend enabling the MFA to help secure your account to prevent hackers getting access.
If you would like us to enable this for you and your business, please contact our team on 01392824022 or email firstname.lastname@example.org.