The importance of Multi-factor Authentication (MFA)


In the news, Slack has admitted to accidently exposing the hashed passwords of workspace users and last week began sending password reset links. Cases like this continue to highlight the importance of MFA.

Hashes of salted passwords being leaked is not as dangerous as exposing them in plain-text, as an attacker would have to use brute-force methods – essentially automating a script to guess passwords – which takes some time. While this makes exploitation less likely, a threat actor may still be motivated to do this because Slack is used by so many companies.

Incidents like these are once again a clear argument for users to enable MFA. If implemented correctly, this would alert the legitimate user to any authentication attempt on their behalf, denying any malicious access attempt.”