JavaScript is required to use Bungie.net

Help

Help us help you.
Edited by Spawn: 6/12/2017 12:14:43 PM
12
16
Nike

Friendly reminder to enable 2FA!

As the we hear the footsteps approaching for Destiny 2, we will continue our journey, and to keep our guardians safe we need to keep our accounts safe. [b]What is 2FA?[/b] An extra layer of security that is known as "multi factor authentication" In today's world of increasing digital crime and internet fraud many people will be highly familiar with the importance of online security, logins, usernames and passwords but if you ask them the question "What is Two Factor Authentication?" the likelihood is they will not know what it is or how it works, even though they may use it every single day. With standard security procedures (especially online) only requiring a simple username and password it has become increasingly easy for criminals (either in organised gangs or working alone) to gain access to a user's private data such as personal and financial details and then use that information to commit fraudulent acts, generally of a financial nature. How does it work? Two Factor Authentication, also known as 2FA, two step verification or TFA (as an acronym), is an extra layer of security that is known as "multi factor authentication" that requires not only a password and username but also something that only, and only, that user has on them, i.e. a piece of information only they should know or have immediately to hand - such as a physical token. Using a username and password together with a piece of information that only the user knows makes it harder for potential intruders to gain access and steal that person's personal data or identity. ---- [b]Xbox Users: [/b] https://www.turnon2fa.com/tutorials/how-to-turn-on-2fa-for-xbox-live/ http://www.xbox.com/en-US/Live/Account-Security Two-step verification helps protect you by making it more difficult for someone else to sign in to your Xbox Live account. It uses two different forms of identity: your password, and a contact method. Even if someone else finds your password, they'll be stopped if they don't have access to your other devices or accounts.  You set up two-step verification with an email address, phone number, or authenticator app. When you sign in on a new device or from a new location, you will be sent a security code to enter on the sign-in page. If you turn on two-step verification, you’ll get a security code to your email, phone, or authenticator app every time you sign in on a device that isn't trusted. When it’s turned off, you will only have to verify your identity with security codes periodically, when there might be a risk to your account security. ---- [b]PlayStation users: [/b] https://www.playstation.com/en-us/account-security/2-step-verification/ Keep your account as secure as possible Passwords can be compromised if you use the same password for multiple accounts, click on malicious links, open phishing emails and other methods. If your password is compromised and becomes known to someone other than yourself, your account will still require a verification code to gain access when you activate 2-Step Verification. How it works When signing into your account on the network, you will use your password along with a verification code that you will receive on your mobile phone via text. By requiring two forms of identification for sign-in, your account and personal information will be better protected. ---- https://www.bungie.net/7_Deleted-Item-and-Character-Policy/en/Help/Article/12211 Remember, keep your data safe, if you lose your account, it's on you DO NOT SHARE ACCOUNT INFO, [b]BUNGIE WON'T RECOVER YOUR DATA OR ANY OF YOUR DESTINY CHARACTERS OR ITEMS IF THEY GET DELETED[/b]! ---- https://www.bungie.net/7_Account-Security-How-to-keep-your-Destiny-Account-/en/Help/Article/12718 Here is more info on this site about this topic! Please share and keep your account protected! ---- [spoiler]Have a nice day 🙋[/spoiler] ~[i]TheGreatNike[/i] [spoiler]Moderator edit: This thread has been moved to the #Help forum where you can find answers and troubleshoot any Destiny in-game / bungie.net / companion app issues, courtesy of other helpful players and [url=https://www.bungie.net/en/forum/Post/132304704/0/0]Mentors[/url]. Feel free to private message the moderator who moved your post, link to topic, for further clarification about why this topic was moved.[/spoiler]
English
#Help #security

Posting in language:

 

Play nice. Take a minute to review our Code of Conduct before submitting your post. Cancel Edit Create Fireteam Post

View Entire Topic
  • Edited by Technohydra: 6/12/2017 3:53:48 PM
    2-factor authentication is a great step to protect yourself and your information. But, with that said, there is more to making it successful than simply turning it on and using it. As an example, when we get new employees, part of the information security training is to completely hack them into oblivion. The IT crew gets their Facebook profile loaded up and determines their email address. If they are super public with their posts and information, most of the time, they can set up a combination of password reset requests for the 2 accounts; use the information provided on social media to verify the identity of the email account. Gain access to the email, use it to gain access to the social media account. Find out if they have more accounts, gain access to them; either they used the same sign-in info on all of them, or they can use the current email to reset the passwords and gain access. This is done during orientation with HR, and they get talked to about it after that meeting. Point being, if you are going to use 2FA, please make sure to manage all of your public accounts properly. Restrict the ability to find your account, or display your postings and information publically. Don't use the same password for multiple accounts, and don't use simple combinations of letters and numbers. Dictionary attacks are great at breaking those. Make sure that you don't base security information off of things you like or are socially involved in; if you are a golfer, make sure to never use a golf term in your passwords, as an example. Never include birth date information, SSN or drivers license information, student ID, address, or other coincidental identifiers in usernames or passwords. And be aware of social engineering techniques, as these can be incredibly successful and difficult to detect if you're not on guard for them. My thanks, Nike, for bringing this issue up. Hopefully, you can help save some people a lot of hardships by doing so.

    Posting in language:

     

    Play nice. Take a minute to review our Code of Conduct before submitting your post. Cancel Edit Create Fireteam Post

    1 Reply
    You are not allowed to view this content.
    ;
    preload icon
    preload icon
    preload icon