We have always recommended that our customers turn on 2FA to protect their email accounts. The safest option is to use an Authenticator such as Google Authenticator or a security dongle rather than the SMS option.
Is a strong password not enough?
While a strong password has become the norm now a days, the extra level of security (2 Factor Authentication) will go a long way in protecting your account from hackers.
Just using a password is not enough now a days. It is much safer to have a certain device such as an app or dongle instead of having a code texted directly to your phone.
Why is it unsafe?
Hackers can call up your phone company pretending to be you. If they convince their help desk to redirect messages to a different SIM card, you will be in for months or even years of headaches.
How do they do it?
Hackers have found a way to use the flaws in the SS7 protocol that underpins SMS, in order to trick your phone network into thinking their device is your phone.
Have further questions - shoot us an email at firstname.lastname@example.org.