Brock’s Information Technology Services (ITS) team recommends users protect themselves from unauthorized account access by setting up multi-factor authentication (MFA).

MFA is a cybersecurity approach that requires users to provide more than one form of identification at the time of login. In most cases, one form of identification is a password and the other an app notification on a mobile device or a code on a one-time verification (OTV) token. This means anyone trying to log into to a user’s account would need the password as well as access to the user’s mobile device or authenticator app.

“Since its deployment, MFA has protected many staff and students’ accounts from full account takeovers when their passwords have been compromised due to phishing attacks,” said Intermediate Information Security Analyst Sean Meloney. “In most cases, cybercriminals acquired an employee or student’s password but could not get to their information because of MFA.”

While various MFA methods exist, Brock ITS strongly recommends using the Microsoft Authenticator app because it offers easy push notifications and increased security due to lock screens and prevents accidental approvals with advanced features such as number matching, location context and application context. Other MFA methods such as text messages and phone calls are less secure.

Visit the Brock ITS website for instructions on setting up the Microsoft Authenticator app. Users can also request a OTV token by submitting a request to the ITS Help Desk at ithelp@brocku.ca

For more information, visit Brock’s MFA website.