Skip to main content

Before someone hijacks your Facebook or Gmail, here’s what you need to turn on

Oops! We couldn't load this video player
Think about it: If somebody wants to really wreck your life, all they need is access to your personal email account. Because all too often, a single email address can grant access to your bank account, all the shopping sites you keep your credit card stored on, not to even mention all your personal private emails.

Worse yet, imagine if your ex or somebody that just flat out hated you had access to your Facebook. Not only would they see all your private messages, but they could pretend to be the worst possible version of you they could imagine. I shudder to think of the fad a few years ago of teenagers sharing their passwords to “prove” their love.

Recommended Videos

There’s a solution. Facebook calls it Login Approvals, Twitter calls it Login Verification, Amazon and Google prefer the phrase Two ­Step Verification, and security geeks call it Two Factor or Multi­Factor Authentication. Whatever you call it, it means there’s an extra step beyond typing in your password that’s necessary to access your account.

If you’ve used a debit card, it’s something you’re already used to. First you put the card in the ATM, then you enter in your PIN. Most online services prefer sending you a fresh code via text message every time you log in somewhere new, rather than having you use the same code over and over.

If that doesn’t sound like much, remember: If you’ve got your phone, they can’t log into your account, even if they have access to your computer. That might buy you the time to get online and change your passwords, so they can’t even access your accounts on that PC.

Two-step authentication isn’t perfect. If the online service gets hacked, they might find away around it. If somebody has access to your phone and your password and you blast all your SMS messages to your lock screen, they’ll get in. But if you’re concerned about somebody hacking into your accounts, whether it’s a family member or an online thief, it’ll make things that much harder for them.

two-step-verification
Image used with permission by copyright holder

It’ll also make things that much harder for you. Leave your phone behind and you’ll be jumping through hoops: Twitter and Google, for example, give you the option of generating backup codes in case you lose your phone.

Ready to try it?

In Facebook, click on the triangle in the upper right-hand corner, then click on “security” on the left side of the page, and click on “login approvals.” Check the box that says “require a security code to access my account from unknown browsers” and enter your phone number. For Google, go to myaccount.google.com, click on “sign ­in & security,” scroll down to “password & sign ­in method,” and click on two-step verification. This will launch a new window. You’ll have to click on “start setup” to get things rolling… then you can enter your number and choose to receive your codes via text message or voice calls.

Google will send you a code to verify that the number works, then you can choose to “trust this computer,” which means you won’t need a code every time you log in. Finally, you can turn on two-step verification. I suggest you try it for one service, whichever service you’re the most concerned about, then see if you’re ready to roll it out across all the services you use online. That’s what I did.

Paranoid? Maybe, but I’d rather not be staring at somebody using my Facebook page while I think, “Maybe I should have turned on the whole two step thing…”

Topics
Patrick Norton
Former Digital Trends Contributor
Patrick cohosts TekThing, a video show packed with viewer questions, product reviews, and how-tos. He also works on This Week…
How to delete your Gmail account (and what you need to know)
The top corner of Gmail on a laptop screen.

Is it time to part ways with your Gmail account? Whether you’re moving onto greener email pastures, or you want to start fresh with a new Gmail address, deleting your old Gmail account is something anyone can do. Of course, we’re not just going to bid you farewell without a guide all our own. If you need to delete your Gmail account, we hope these step-by-step instructions will make the process even easier.

Read more
How to change your Yahoo password on desktop and mobile
A Yahoo mail inbox.

One of the best ways to keep your many email inboxes safe and secure is by frequently changing your password. While this may sound inconsequential, periodic login updates end up being one of the biggest deterrents against hackers and other malcontents. If Yahoo is your email platform of choice, we’ve put together this guide to teach you how to update your account password in just a few simple steps.

Read more
How to update your Gmail picture on desktop and mobile
A man holding a teacup staring at laptop screen.

There are lots of reasons why you'd want to change your Gmail profile picture. Maybe you have a great, new selfie you want to show off. Or you just want to update your work email with a photo that's recent and professional-looking. Whatever the reason, we can help you update your Gmail picture in just a few quick steps. We've also got you covered whether you choose to change your photo via Gmail's desktop website or through its mobile app.

Read more