{"id":132,"date":"2020-11-08T08:42:28","date_gmt":"2020-11-08T08:42:28","guid":{"rendered":"https:\/\/iconit.co.nz\/?p=132"},"modified":"2021-05-19T17:31:54","modified_gmt":"2021-05-19T05:31:54","slug":"case-study-overcoming-phishing-with-2fa-or-mfa","status":"publish","type":"post","link":"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/","title":{"rendered":"Case Study: Overcoming phishing with 2FA or MFA"},"content":{"rendered":"\n<p class=\"has-medium-font-size\">One of Icon IT\u2019s clients was having an issue with phishing emails. Some of these suspicious emails were getting through their email systems without being blocked, and multiple times in one year, <a href=\"https:\/\/iconit.co.nz\/index.php\/phishing-education-and-training-for-staff\/\">staff members would click on a link in an email<\/a> when they shouldn\u2019t have, and then supplied their login name and password to the network. In this blog post we aim to show you the steps to overcoming phishing with 2FA or MFA.<\/p>\n\n\n\n<p class=\"has-medium-font-size\">Obviously, this company was keen to stop staff clicking on things that they shouldn&#8217;t, and wanted to know what their options were.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">What is phishing?<\/h2>\n\n\n\n<p class=\"has-medium-font-size\">First off, what is phishing? If you know already, then skip this bit, but phishing emails are those dodgy ones that come through with links that go off to websites that might ask for your network\/email username and password, and all sorts of other suspicious things. They might look like they come from PayPal, LinkedIn, Dropbox \u2013 all sorts of legitimate companies, but these emails are in no way legitimate.<\/p>\n\n\n\n<figure class=\"wp-block-embed is-type-video is-provider-youtube wp-block-embed-youtube wp-embed-aspect-16-9 wp-has-aspect-ratio\"><div class=\"wp-block-embed__wrapper\">\n<iframe loading=\"lazy\" title=\"What is phishing? Learn how this attack works\" width=\"770\" height=\"433\" src=\"https:\/\/www.youtube.com\/embed\/Y7zNlEMDmI4?feature=oembed\" frameborder=\"0\" allow=\"accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture\" allowfullscreen><\/iframe>\n<\/div><\/figure>\n\n\n\n<p class=\"has-medium-font-size\">In our case study, as mentioned this client had their email hacked three times in one year. What does this mean, in reality? Each time, a staff member <a href=\"https:\/\/iconit.co.nz\/index.php\/phishing-education-and-training-for-staff\/\">clicked on a dodgy link in an email<\/a>, which opened up a web page and asked the staff member to enter their email address and password \u2013 and each time, they did. The hacker then went off and setup a forward on that email address, sending it to themselves. The user had no idea this had happened.<\/p>\n\n\n\n<p class=\"has-medium-font-size\">The hacker then went and sent emails on behalf of the staff member, claiming to be them, and request invoice payments.<\/p>\n\n\n\n<div class=\"wp-block-image\"><figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"684\" height=\"1024\" src=\"https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-saksham-choudhary-2036656-684x1024.jpg\" alt=\"phishing-scams-hacking-mfa-2fa-icon-it-limited\" class=\"wp-image-135\" srcset=\"https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-saksham-choudhary-2036656-684x1024.jpg 684w, https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-saksham-choudhary-2036656-200x300.jpg 200w, https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-saksham-choudhary-2036656-768x1150.jpg 768w, https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-saksham-choudhary-2036656-1025x1536.jpg 1025w, https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-saksham-choudhary-2036656-1367x2048.jpg 1367w, https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-saksham-choudhary-2036656-300x449.jpg 300w, https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-saksham-choudhary-2036656-850x1273.jpg 850w, https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-saksham-choudhary-2036656-scaled.jpg 1282w\" sizes=\"(max-width: 684px) 100vw, 684px\" \/><\/figure><\/div>\n\n\n\n<p class=\"has-medium-font-size\">There\u2019s no doubt that no business owner or organisation wants to go through this \u2013 especially not multiple times. The potential loss of money and the absolute loss of faith by stakeholders, suppliers and clients cannot be underestimated.<\/p>\n\n\n\n<p class=\"has-medium-font-size\">So what are your options here? There\u2019s actually quite a few; you could stop the phishing emails before they get to your staff, or for this specific client, you could implement 2FA or MFA to stop the hackers actually accessing your staffs email, if they had the password.<\/p>\n\n\n\n<p class=\"has-medium-font-size\">You could also implement phish testing, to <a href=\"https:\/\/iconit.co.nz\/index.php\/phishing-education-and-training-for-staff\/\">educate your staff<\/a> on what emails not to open &#8211; this is another of Icon IT&#8217;s services. These have high success rates. Icon IT can do <a href=\"https:\/\/iconit.co.nz\/index.php\/phish-testing-service-in-wellington\/\">phish testing<\/a> for you, <a href=\"https:\/\/iconit.co.nz\/index.php\/coffee\/\">contact us for more details<\/a> about this service.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Overcoming phishing with 2FA and MFA<\/h2>\n\n\n\n<p class=\"has-medium-font-size\">You are probably wondering what 2FA and MFA are. 2FA stands for 2 Factor Authentication, and MFA is Multi-Factor Authentication.<\/p>\n\n\n\n<p class=\"has-medium-font-size\">You might have already used 2FA to access a banking website. Some banks will, if you ask them, supply a \u2018token\u2019 \u2013 a small device that has a rolling numeric code on it, so when you go to log into the bank, or go to transfer a large amount of money online, you need to enter the code first. This is a basic use of 2FA.<\/p>\n\n\n\n<p class=\"has-medium-font-size\">MFA means there may be more than one method of authenticating to access a service. For both 2FA and MFA, this could be email, banking, Customer Relationship Management (CRM) like SalesForce or Microsoft CRM \u2013 basically any service you need to authenticate to use.<\/p>\n\n\n\n<div class=\"wp-block-image\"><figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"684\" src=\"https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-photo-735911-1024x684.jpeg\" alt=\"\" class=\"wp-image-134\" srcset=\"https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-photo-735911-1024x684.jpeg 1024w, https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-photo-735911-300x200.jpeg 300w, https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-photo-735911-768x513.jpeg 768w, https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-photo-735911-1536x1025.jpeg 1536w, https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-photo-735911-2048x1367.jpeg 2048w, https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-photo-735911-850x567.jpeg 850w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/figure><\/div>\n\n\n\n<p class=\"has-medium-font-size\">How would 2FA block the hacker mentioned? Let\u2019s say they have one of your staff member\u2019s email address and password. The hacker then logs into the mail service you use (let\u2019s say Microsoft365, or Office365), and enters the email address and then the password. Since you have 2FA implemented, they are then prompted for the 2FA code. They don\u2019t have it, so that\u2019s it \u2013 they are unable to access your staff member\u2019s email. It\u2019s really that simple.<\/p>\n\n\n\n<p class=\"has-medium-font-size\">You can also use 2FA to implement policies of when it\u2019s used; for example, for your own premises, you probably don\u2019t ever want 2FA to kick in, as it\u2019s just going to annoy staff. You can setup a policy to do this.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">But how does it actually work?<\/h2>\n\n\n\n<p class=\"has-medium-font-size\">Let\u2019s say your staff member is at home, and then logs into <a href=\"http:\/\/www.office.com\">www.office.com<\/a> to check their email. They enter their email address and password, and get prompted at that point for the code. They enter the code (from a token, or a phone app, or there are other options) and then they are in. 2FA doesn\u2019t add a lot of time to the process.<\/p>\n\n\n\n<p class=\"has-medium-font-size\">And depending on the 2FA system used, it may be a smartphone app. Instead of giving you a code, some of the apps will instead simply pop up with a prompt to Allow or Deny access. Assuming it\u2019s legitimate, the user doesn\u2019t need to enter a code, they simply press the Allow button on the app, and then they\u2019re in.<\/p>\n\n\n\n<p class=\"has-medium-font-size\">There\u2019s a lot more to it than this, but that\u2019s the overview. There\u2019s also costs involved of course, and some <a href=\"https:\/\/www.microsoft.com\/en-ww\/microsoft-365\" target=\"_blank\" rel=\"noreferrer noopener\">Microsoft365<\/a> licenses come with MFA functionally. You can contact us to see if your license is one of those.<\/p>\n\n\n\n<p class=\"has-medium-font-size\">MFA and 2FA are an excellent way in overcoming phishing, and we believe it will be a requirement for any <a href=\"https:\/\/en.wikipedia.org\/wiki\/Cyber_insurance\" target=\"_blank\" rel=\"noreferrer noopener\">Cyber Security insurance policy<\/a> within two years. The time to start considering 2FA or MFA is right now.<\/p>\n\n\n\n<p class=\"has-medium-font-size\">If you want a no-obligation chat around 2FA and MFA, please get in touch.<\/p>\n\n\n\n<div class=\"wp-block-contact-form-7-contact-form-selector\">\n<div class=\"wpcf7 no-js\" id=\"wpcf7-f68-o1\" lang=\"en-NZ\" dir=\"ltr\">\n<div class=\"screen-reader-response\"><p role=\"status\" aria-live=\"polite\" aria-atomic=\"true\"><\/p> <ul><\/ul><\/div>\n<form action=\"\/index.php\/wp-json\/wp\/v2\/posts\/132#wpcf7-f68-o1\" method=\"post\" class=\"wpcf7-form init\" aria-label=\"Contact form\" novalidate=\"novalidate\" data-status=\"init\">\n<div style=\"display: none;\">\n<input type=\"hidden\" name=\"_wpcf7\" value=\"68\" \/>\n<input type=\"hidden\" name=\"_wpcf7_version\" value=\"5.9.3\" \/>\n<input type=\"hidden\" name=\"_wpcf7_locale\" value=\"en_NZ\" \/>\n<input type=\"hidden\" name=\"_wpcf7_unit_tag\" value=\"wpcf7-f68-o1\" \/>\n<input type=\"hidden\" name=\"_wpcf7_container_post\" value=\"0\" \/>\n<input type=\"hidden\" name=\"_wpcf7_posted_data_hash\" value=\"\" \/>\n<input type=\"hidden\" name=\"_wpcf7_recaptcha_response\" value=\"\" \/>\n<\/div>\n<p><label> Your Name (required)<br \/>\n<span class=\"wpcf7-form-control-wrap\" data-name=\"your-name\"><input size=\"40\" class=\"wpcf7-form-control wpcf7-text wpcf7-validates-as-required\" aria-required=\"true\" aria-invalid=\"false\" value=\"\" type=\"text\" name=\"your-name\" \/><\/span> <\/label>\n<\/p>\n<p><label> Your Email (required)<br \/>\n<span class=\"wpcf7-form-control-wrap\" data-name=\"your-email\"><input size=\"40\" class=\"wpcf7-form-control wpcf7-email wpcf7-validates-as-required wpcf7-text wpcf7-validates-as-email\" aria-required=\"true\" aria-invalid=\"false\" value=\"\" type=\"email\" name=\"your-email\" \/><\/span> <\/label>\n<\/p>\n<p><label> Subject<br \/>\n<span class=\"wpcf7-form-control-wrap\" data-name=\"your-subject\"><input size=\"40\" class=\"wpcf7-form-control wpcf7-text\" aria-invalid=\"false\" value=\"\" type=\"text\" name=\"your-subject\" \/><\/span> <\/label>\n<\/p>\n<p><label> Your Message<br \/>\n<span class=\"wpcf7-form-control-wrap\" data-name=\"your-message\"><textarea cols=\"40\" rows=\"10\" class=\"wpcf7-form-control wpcf7-textarea\" aria-invalid=\"false\" name=\"your-message\"><\/textarea><\/span> <\/label>\n<\/p>\n<p><input class=\"wpcf7-form-control wpcf7-submit has-spinner\" type=\"submit\" value=\"Send\" \/>\n<\/p><p style=\"display: none !important;\" class=\"akismet-fields-container\" data-prefix=\"_wpcf7_ak_\"><label>&#916;<textarea name=\"_wpcf7_ak_hp_textarea\" cols=\"45\" rows=\"8\" maxlength=\"100\"><\/textarea><\/label><input type=\"hidden\" id=\"ak_js_1\" name=\"_wpcf7_ak_js\" value=\"182\"\/><script>document.getElementById( \"ak_js_1\" ).setAttribute( \"value\", ( new Date() ).getTime() );<\/script><\/p><div class=\"wpcf7-response-output\" aria-hidden=\"true\"><\/div>\n<\/form>\n<\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>One of Icon IT\u2019s clients was having an issue with phishing emails. Some of these suspicious emails were getting through their email systems without being blocked, and multiple times in one year, staff members would click on a link in an email when they shouldn\u2019t have, and then supplied their login name and password to [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":133,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2,10],"tags":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v22.3 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Case Study: Overcoming phishing with 2FA or MFA &#8211; Icon IT - Independent IT Auditors<\/title>\n<meta name=\"description\" content=\"Icon IT - Blog Posts Icon IT - Independent IT Auditors Case Study: Overcoming phishing with 2FA or MFA Overcoming phishing with 2FA or MFA\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Case Study: Overcoming phishing with 2FA or MFA &#8211; Icon IT - Independent IT Auditors\" \/>\n<meta property=\"og:description\" content=\"Icon IT - Blog Posts Icon IT - Independent IT Auditors Case Study: Overcoming phishing with 2FA or MFA Overcoming phishing with 2FA or MFA\" \/>\n<meta property=\"og:url\" content=\"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/\" \/>\n<meta property=\"og:site_name\" content=\"Icon IT - Independent IT Auditors\" \/>\n<meta property=\"article:published_time\" content=\"2020-11-08T08:42:28+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2021-05-19T05:31:54+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-cottonbro-5483071-scaled.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1920\" \/>\n\t<meta property=\"og:image:height\" content=\"1281\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Fred\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Fred\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/\"},\"author\":{\"name\":\"Fred\",\"@id\":\"https:\/\/iconit.co.nz\/#\/schema\/person\/d141d2dcb20d01a29e7fbe4c34ba01d0\"},\"headline\":\"Case Study: Overcoming phishing with 2FA or MFA\",\"datePublished\":\"2020-11-08T08:42:28+00:00\",\"dateModified\":\"2021-05-19T05:31:54+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/\"},\"wordCount\":920,\"publisher\":{\"@id\":\"https:\/\/iconit.co.nz\/#organization\"},\"image\":{\"@id\":\"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-cottonbro-5483071-scaled.jpg\",\"articleSection\":[\"Icon IT - Blog Posts\",\"MFA and 2FA\"],\"inLanguage\":\"en-NZ\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/\",\"url\":\"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/\",\"name\":\"Case Study: Overcoming phishing with 2FA or MFA &#8211; Icon IT - Independent IT Auditors\",\"isPartOf\":{\"@id\":\"https:\/\/iconit.co.nz\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-cottonbro-5483071-scaled.jpg\",\"datePublished\":\"2020-11-08T08:42:28+00:00\",\"dateModified\":\"2021-05-19T05:31:54+00:00\",\"description\":\"Icon IT - Blog Posts Icon IT - Independent IT Auditors Case Study: Overcoming phishing with 2FA or MFA Overcoming phishing with 2FA or MFA\",\"breadcrumb\":{\"@id\":\"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/#breadcrumb\"},\"inLanguage\":\"en-NZ\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-NZ\",\"@id\":\"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/#primaryimage\",\"url\":\"https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-cottonbro-5483071-scaled.jpg\",\"contentUrl\":\"https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-cottonbro-5483071-scaled.jpg\",\"width\":1920,\"height\":1281,\"caption\":\"virtual-cio-service-it-manager-temporary\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/iconit.co.nz\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Case Study: Overcoming phishing with 2FA or MFA\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/iconit.co.nz\/#website\",\"url\":\"https:\/\/iconit.co.nz\/\",\"name\":\"Icon IT - Independent IT Auditors\",\"description\":\"Keeping IT simple\",\"publisher\":{\"@id\":\"https:\/\/iconit.co.nz\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/iconit.co.nz\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-NZ\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/iconit.co.nz\/#organization\",\"name\":\"Icon IT Limited\",\"url\":\"https:\/\/iconit.co.nz\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-NZ\",\"@id\":\"https:\/\/iconit.co.nz\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/10\/icon-it-logo-small.png\",\"contentUrl\":\"https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/10\/icon-it-logo-small.png\",\"width\":412,\"height\":173,\"caption\":\"Icon IT Limited\"},\"image\":{\"@id\":\"https:\/\/iconit.co.nz\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/iconit.co.nz\/#\/schema\/person\/d141d2dcb20d01a29e7fbe4c34ba01d0\",\"name\":\"Fred\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-NZ\",\"@id\":\"https:\/\/iconit.co.nz\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/b5576b9d9cdf6251b80c6c2d4d1b32c5?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/b5576b9d9cdf6251b80c6c2d4d1b32c5?s=96&d=mm&r=g\",\"caption\":\"Fred\"},\"sameAs\":[\"https:\/\/iconit.co.nz\"]}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Case Study: Overcoming phishing with 2FA or MFA &#8211; Icon IT - Independent IT Auditors","description":"Icon IT - Blog Posts Icon IT - Independent IT Auditors Case Study: Overcoming phishing with 2FA or MFA Overcoming phishing with 2FA or MFA","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/","og_locale":"en_US","og_type":"article","og_title":"Case Study: Overcoming phishing with 2FA or MFA &#8211; Icon IT - Independent IT Auditors","og_description":"Icon IT - Blog Posts Icon IT - Independent IT Auditors Case Study: Overcoming phishing with 2FA or MFA Overcoming phishing with 2FA or MFA","og_url":"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/","og_site_name":"Icon IT - Independent IT Auditors","article_published_time":"2020-11-08T08:42:28+00:00","article_modified_time":"2021-05-19T05:31:54+00:00","og_image":[{"width":1920,"height":1281,"url":"https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-cottonbro-5483071-scaled.jpg","type":"image\/jpeg"}],"author":"Fred","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Fred","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/#article","isPartOf":{"@id":"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/"},"author":{"name":"Fred","@id":"https:\/\/iconit.co.nz\/#\/schema\/person\/d141d2dcb20d01a29e7fbe4c34ba01d0"},"headline":"Case Study: Overcoming phishing with 2FA or MFA","datePublished":"2020-11-08T08:42:28+00:00","dateModified":"2021-05-19T05:31:54+00:00","mainEntityOfPage":{"@id":"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/"},"wordCount":920,"publisher":{"@id":"https:\/\/iconit.co.nz\/#organization"},"image":{"@id":"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/#primaryimage"},"thumbnailUrl":"https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-cottonbro-5483071-scaled.jpg","articleSection":["Icon IT - Blog Posts","MFA and 2FA"],"inLanguage":"en-NZ"},{"@type":"WebPage","@id":"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/","url":"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/","name":"Case Study: Overcoming phishing with 2FA or MFA &#8211; Icon IT - Independent IT Auditors","isPartOf":{"@id":"https:\/\/iconit.co.nz\/#website"},"primaryImageOfPage":{"@id":"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/#primaryimage"},"image":{"@id":"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/#primaryimage"},"thumbnailUrl":"https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-cottonbro-5483071-scaled.jpg","datePublished":"2020-11-08T08:42:28+00:00","dateModified":"2021-05-19T05:31:54+00:00","description":"Icon IT - Blog Posts Icon IT - Independent IT Auditors Case Study: Overcoming phishing with 2FA or MFA Overcoming phishing with 2FA or MFA","breadcrumb":{"@id":"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/#breadcrumb"},"inLanguage":"en-NZ","potentialAction":[{"@type":"ReadAction","target":["https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/"]}]},{"@type":"ImageObject","inLanguage":"en-NZ","@id":"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/#primaryimage","url":"https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-cottonbro-5483071-scaled.jpg","contentUrl":"https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/11\/pexels-cottonbro-5483071-scaled.jpg","width":1920,"height":1281,"caption":"virtual-cio-service-it-manager-temporary"},{"@type":"BreadcrumbList","@id":"https:\/\/iconit.co.nz\/index.php\/2020\/11\/08\/case-study-overcoming-phishing-with-2fa-or-mfa\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/iconit.co.nz\/"},{"@type":"ListItem","position":2,"name":"Case Study: Overcoming phishing with 2FA or MFA"}]},{"@type":"WebSite","@id":"https:\/\/iconit.co.nz\/#website","url":"https:\/\/iconit.co.nz\/","name":"Icon IT - Independent IT Auditors","description":"Keeping IT simple","publisher":{"@id":"https:\/\/iconit.co.nz\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/iconit.co.nz\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-NZ"},{"@type":"Organization","@id":"https:\/\/iconit.co.nz\/#organization","name":"Icon IT Limited","url":"https:\/\/iconit.co.nz\/","logo":{"@type":"ImageObject","inLanguage":"en-NZ","@id":"https:\/\/iconit.co.nz\/#\/schema\/logo\/image\/","url":"https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/10\/icon-it-logo-small.png","contentUrl":"https:\/\/iconit.co.nz\/wp-content\/uploads\/2020\/10\/icon-it-logo-small.png","width":412,"height":173,"caption":"Icon IT Limited"},"image":{"@id":"https:\/\/iconit.co.nz\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/iconit.co.nz\/#\/schema\/person\/d141d2dcb20d01a29e7fbe4c34ba01d0","name":"Fred","image":{"@type":"ImageObject","inLanguage":"en-NZ","@id":"https:\/\/iconit.co.nz\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/b5576b9d9cdf6251b80c6c2d4d1b32c5?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/b5576b9d9cdf6251b80c6c2d4d1b32c5?s=96&d=mm&r=g","caption":"Fred"},"sameAs":["https:\/\/iconit.co.nz"]}]}},"_links":{"self":[{"href":"https:\/\/iconit.co.nz\/index.php\/wp-json\/wp\/v2\/posts\/132"}],"collection":[{"href":"https:\/\/iconit.co.nz\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/iconit.co.nz\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/iconit.co.nz\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/iconit.co.nz\/index.php\/wp-json\/wp\/v2\/comments?post=132"}],"version-history":[{"count":18,"href":"https:\/\/iconit.co.nz\/index.php\/wp-json\/wp\/v2\/posts\/132\/revisions"}],"predecessor-version":[{"id":766,"href":"https:\/\/iconit.co.nz\/index.php\/wp-json\/wp\/v2\/posts\/132\/revisions\/766"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/iconit.co.nz\/index.php\/wp-json\/wp\/v2\/media\/133"}],"wp:attachment":[{"href":"https:\/\/iconit.co.nz\/index.php\/wp-json\/wp\/v2\/media?parent=132"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/iconit.co.nz\/index.php\/wp-json\/wp\/v2\/categories?post=132"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/iconit.co.nz\/index.php\/wp-json\/wp\/v2\/tags?post=132"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}