Hackers have become too good, and security systems are still flawed. Longer complicated passwords created by generators like Safari's iCloud Keychain or third-party apps like LastPass or 1Password can help, but the absolute best way to lock down your accounts is to add extra security options for a two-step verification or two-factor authentication (2FA). Here's how to go about it.

What is two-factor authentication?

Two-factor authentication asks you to authenticate that you are who you say you are by supplying not only your password, but also a unique code supplied from your phone or an external app. It ensures that those accessing your accounts have access to both your physical devices and your virtual passwords, thus making a simple password crack or social engineering hack a lot more insufficient when it comes to accessing your personal data.

What's the difference between two-factor authentication and two-step verification?

Two-factor authentication, or 2FA, traditionally requires two different types of authentication. This includes something you know (password), something you are (fingerprint or face scan), or something you have (a secondary trusted device).

Two-step verification, on the other hand, can use the same type of information delivered by different sources. For example, a code you remember (password), as well as a code you're sent over SMS (token).

Two (or more) factors can be more secure, but two steps are typically enough for most online accounts. It's a better version of the old "security questions." It not only helps you avoid having to remember your random answers, but it also removes the risk of relying on potentially easy-to-find information.