A Cautionary tale about 2-step verifcation

We’ve all heard about 2-step/factor verification methods for some time. It helps protect against fraud by requiring an additional layer of authentication such as text message or email in order to access or change your account information.

As this practice becomes more widespread, how many of us have taken the time to set up this security protocol on each site that offers it? Who wants to look at yet another device/email/text message just to access one of their accounts?

Now imagine that you are logged into your online Quickbooks account one day… You can see the details of your account on your computer screen as you organize papers on your desk. Out of the corner of your eye, you notice your mouse moving across your screen… WITHOUT YOU TOUCHING IT!

As you watch in horror, the mouse adds a vendor. A payee you have never heard before. Your phantom mouse then begins issuing a check to this mystery vendor-from YOUR checking account. 

This may sound far fetched, but it recently happened to one of our clients. Although they were able to get their money returned, we have now learned that it could have been prevented by utilizing Quickbooks’ 2-step verification option.
​
We highly recommend utilizing 2-step verification methods on any websites that offer them. This added layer of security is vital to keeping your information private and secure. To make the process a little easier, some sites offer an option to “remember your device”. This will eliminate the need to re-verify your device on the next log in.
So next time you are asked if you would like to set up a 2-step verification process, ask yourself, how much money could those 5 minutes of your time really be worth?

---