An administrator notices that several users are logging in from suspicious IP addresses. After speaking with the users, the administrator determines that the employees were not logging in from those IP addresses and resets the affected users’ passwords. Which of the following should the administrator implement to prevent this type of attack from succeeding in the future?
To prevent unauthorized logins from suspicious IP addresses and enhance the security of user accounts, the administrator should implement multifactor authentication. Multifactor authentication (MFA) requires users to provide two or more verification factors to gain access, such as a password and a code from a mobile device or a fingerprint. This additional layer of security significantly reduces the likelihood of unauthorized access, even if an attacker has the user's password.
A. Multifactor; there's a need to add "something you have", apart from "something you (they) know".
A. implement Multi-Factor Authentication (MFA) serves as an additional security measure.
To prevent unauthorized logins from suspicious IP addresses and enhance the security of user accounts, the administrator should implement: A. Multifactor authentication Multifactor authentication (MFA) requires users to provide two or more verification factors to gain access to a resource such as an application, online account, or VPN. This security measure significantly reduces the likelihood of unauthorized access because even if an attacker has the password, they would still need the additional verification factor(s), such as a code from a mobile device, a fingerprint, or a hardware token.
For me : A