Making two-factor authentication much stronger in two easy steps




By Sarah Pike

Reading a recent post about a stolen iPhone and the importance of two-factor notification, I had a mortifying realization. I’d happily enabled 2FA for pretty much all possible accounts — banks, Google, if they had the option, I took it. No petty thief would put one over on me, no ma’am.

Anytime I needed to log in from a new device or otherwise set off a two-factor-authentication signal, I’d simply pick up my phone and snag the authentication code from a convenient notification that popped up even if the phone was locked.

That’s right, both iPhone and Android can show text messages on the lock screen for anyone to see. In other words, I’d be fine — as long as my phone was never stolen. Great! Never mind that smartphones are some of the tastiest bait for crooks, who can get up to all sorts of moneymaking mischief with a mobile.

So, take this small bit of advice from a truly humbled yours truly: Make sure your notifications, and the notifications of your loved ones, don’t give away your valuable secrets and account access.

Disabling lock-screen notifications on iPhone

iPhone users have a bit more flexibility in notification settings. First of all, you can set up notification previews in general:

  1. Open Settings;
  2. Go to Notifications;
  3. Tap on Show Previews at the very top if you want to turn off lock-screen notifications all at once.
  4. Select When Unlocked or Never.

In iOS you can fine-tune the balance of convenience and privacy. If you prefer to keep some notification previews on your lock screen and hide only those that contain sensitive information, you can choose another approach and set up this option individually for each app:

  1. Again, open Settings;
  2. Go to Notifications;
  3. Tap on the app in question, for example, Messages;
  4. Scroll down to the option for showing previews and select either When Unlocked or Never.

Disabling lock-screen notifications on Android

Android settings can vary a bit depending on version and device — and there’s quite a number of them. With that said, it’s impossible to make an ultimate guide, so poke around a bit if necessary.

  1. Open Settings;
  2. Go to Apps & Notifications, then Notifications;
  3. Choose On the lock screen;
  4. Choose either Don’t show notifications or Show notifications but hide sensitive content.

Most Android versions don’t allow you to set up lock-screen notifications individually for each app; however, in Samsung’s version of the OS you can do it.

Don’t forget to protect your SIM card

Removing notifications from your lock screen is a good start, but our job isn’t done yet. You see, it isn’t a phone that actually receives text messages, but rather a tiny piece of plastic no one thinks about much: a SIM card. It’s incredibly easy to remove a SIM card from one phone, insert it into any other phone, and receive your calls and messages — including messages with 2FA one-time codes.

It’s pretty easy to protect yourself from that kind of information theft — just set up a PIN code request for your SIM card. Here’s how to do it on an iPhone:

  1. Open Settings;
  2. After a fair bit of scrolling, tap on Phone;
  3. Go to SIM PIN;
  4. Switch SIM PIN on;
  5. Enter your current PIN. If you never set one, use the default code set by the operator — you can find it in your SIM starter kit;
  6. Tap on Change PIN to use custom code instead of the default one;
  7. Enter your current PIN;
  8. After that enter your new PIN code, and enter it once again for confirmation.

For Android (again, it may be slightly different in your phone):

  1. Go to Settings, then Security & Location;
  2. Choose SIM card lock and Lock SIM card;
  3. When prompted, enter the SIM PIN. If you didn’t set one up, find the default SIM PIN in the documentation from your SIM card;
  4. Choose Change SIM PIN;
  5. Enter the old PIN;
  6. Enter a new PIN (and again, for confirmation).

Now every time your phone is restarted or the SIM card is inserted in another phone, you’ll need to enter the PIN code, or else it won’t start. You’re set — at least as far as two-factor authentication codes go.

(From Kaspersky blog).

Advert:




Be the first to comment

Leave a Reply

Your email address will not be published.


*


This site uses Akismet to reduce spam. Learn how your comment data is processed.