Setting up 2FA on 9 Popular Apps & Services Before Safer Internet Day

Security on the Internet is being talked about more and more. There are regular news about account hacks and hacker attacks, so every user, not just paranoid conspirators, is trying to protect personal data. On February 8 the whole world will even celebrate Safer Internet Day, so it’s a good time to talk about how we can protect our data.

One of the best and easiest ways to protect your data online is to enable two-factor authentication in the programs and applications you use. Don’t be intimidated by this term if this is the first time you’ve heard it — it’s actually very easy to set up.

What Is Two-Factor Authentification and How Can I Enable It?

2FA is a way to verify a user’s identity by comparing the password they specify with the password stored in the database. Authentication should not be confused with identification or authorization — these are different processes. Here’s an example: A user wants to sign in to his Google account.

First he has to enter his login — this is identification.

Then the system asks him to enter his password — this is authentication.

But Google wants to hedge its bets and make sure that the account is really this user and not a fraud, and then it will ask him to enter a one-time code in the SMS or in the app — this is two-factor authentication.

While the first two steps are required in order to log into an account, two-factor authentication is most often set up by the user themselves at will. With 2FA, you must log in with a username and password and provide another form of authentication that only you have access to. There are several basic types of two-factor authentication:

• via email (the least secure);
• via SMS (the most popular);
• by phone (you must enter the last 4 digits of the number);
• via token or TOTP authentication (dynamic 6-digit code);
• with biometrics (fingerprint, face or voice ID);
• push notification (you choose which device to send it to).

The most secure services are those that support multiple types of authentication (MFA). There are also separate services through which you can connect 2FA: for example, Authy, Google Authenticator, and Duo Mobile.

Popular Services With 2FA: You Sure Didn’t Turn It On

Two-factor authentication is present in almost all modern applications and sites, but you may not even be aware of it. For example, Zoom, Twitch, TikTok, Facebook, and other social networks have 2FA. Be sure to check if you have it set up?

Here’s a list of popular services where you can enable two-factor authentication, but few people know about it:

1. Figma — is a tool for designers that is used to develop interfaces and prototypes in real-time. 2FA is turned on in the settings, the confirmation comes via SMS. I’m sure that not all designers are aware of this feature in their favorite service. Probably because it’s not really needed there.

2. Telegram — is a popular cloud messenger for messaging, calling and video calls. In order to enable two-step authentication, you must enter and confirm a password and specify a password hint, which must be entered in addition to the code from the SMS. And you also need to specify the e-mail for password recovery. In general, everything is very serious!

3. Braze — is a customer engagement platform that allows marketers to use their creativity and track analytics on campaigns. Two-factor authentication is optional by default. But if it’s enabled at the organizational level, users who don’t set it up will be locked out of their account.

4. Getscreen.me — is a cloud service for remote access. Security in such tools is especially important, so in addition to data encryption with a 128-bit AES algorithm, the user is offered to set up 2FA. You can choose where the code will be sent — to SMS, email, Telegram or Google Authenticator.

5. Wix — is a website builder. The platform uses proven algorithms and encryption protocols to protect data in transit or at the point of storage. They claim that their top priority is security and privacy. You can verify your account with a two-step verification via SMS or email.

6. Bitrix24 — is a service for business management. It protects you from cases where your username and password can be stolen by a hacker or an unscrupulous employee. It is possible to make two-factor authentication mandatory and even set a deadline, during which it should be enabled for all employees.

6. GitHub — is the largest service for developers to store code and collaborate on projects. Once 2FA is enabled, GitHub generates an authentication code every time someone tries to log into your account. Once 2FA is set up with a mobile app or text message, you can add a security key, such as a fingerprint reader or Windows Hello. The technology that provides security key authentication is called WebAuthn. It is the successor to U2F and works in all modern browsers.

7. Evernote — is an application for creating text and audio notes and synchronizing them across all devices. When two-step verification is enabled, a password, a verification code, and a backup code are required to access your Evernote account. If you cannot provide verification or backup code, you will lose access to your account. SMS and calls are always included as backup methods for TOTP.

8. Sync — is a cloud-based file storage and document collaboration platform that helps teams stay secure. Two-factor authentication can be enabled through a mobile authenticator app (such as Google Authenticator) or through email.

9. Coinbase — is one of the most popular cryptocurrency exchanges with more than 70 million worldwide users. The cryptocurrency market is one of the most vulnerable — you regularly see news about hackers breaking into users’ wallets and withdrawing all the money. So if you have an account on one of the cryptocurrency exchanges — 2FA protection is a must-have.

Remember that two-factor authentication is very important for the security of your account. Don’t be lazy to set it up right now and it will help you save your personal data, nerves, and money!