Warning issued after fraudsters attempt to bypass Two-Factor Authentication
Main article content
Recently the force has seen an increase in the reporting of fraud offences where Two-Factor Authentication (2FA) codes have been obtained in order to gain access to secure accounts.
2FA can take the form of something you know, like a password or PIN; something you have, like your phone; or something you are, like a fingerprint.
Typically, it involves sending a code to a registered mobile device after a user has entered their username and password into a website.
It’s mainly used by social media organisations and banks to ensure user’s details are kept secure and only they can gain access to their accounts.
In the last two weeks 14 reports have been received where people have been contacted by individuals online who they believed were family or friends and asked to share their 2FA code. It is later established that the accounts were compromised as the victim genuinely believed they shared the 2FA codes with someone they know.
The simple advice is never share your 2FA code with anyone!