What Is Two-Factor Authentication and Why You Need It

Two-factor authentication (2FA) adds a second layer of security to your accounts beyond your password. It’s the single most effective thing you can do to protect yourself online.

How 2FA Works

Instead of just a password (something you know), 2FA requires a second factor:

• Something you have — your phone, a hardware key, or an authenticator app
• Something you are — your fingerprint or face

Even if someone steals your password, they can’t log in without the second factor.

Types of 2FA

Why SMS 2FA Isn’t Enough

SMS-based 2FA is better than nothing, but it’s vulnerable to SIM swapping — attackers convince your phone carrier to transfer your number to their SIM card. If possible, use an authenticator app instead.

How to Enable 2FA on Popular Services

Google / Gmail

1. Go to myaccount.google.com → Security
2. Under “How you sign in to Google,” select “2-Step Verification”
3. Follow the prompts to set up an authenticator app

Apple ID

1. Go to appleid.apple.com → Sign-In & Security
2. Select “Two-Factor Authentication”
3. Follow the on-screen instructions

GitHub

1. Settings → Password and authentication
2. Under “Two-factor authentication,” select “Enable two-factor authentication”
3. Choose authenticator app or hardware key

Facebook / Instagram

1. Settings → Security and Login
2. Scroll to “Two-Factor Authentication” and select “Edit”
3. Choose your preferred method

Recommended Authenticator Apps

• Google Authenticator — Simple, free, offline
• Authy — Backs up your codes, multi-device
• Microsoft Authenticator — Good for Microsoft accounts
• 1Password — Password manager with built-in 2FA

What Happens If You Lose Your Phone?

Always save backup codes (provided when you set up 2FA). Store them in a safe place — not on your phone.

Related: Learn how to create strong passwords and protect your privacy online.