The Nigerian Communications Commission’s Computer Security Incident Response Team (NCC-CSIRT) has suggested a Two-Factor Authentication (2FA) for WhatsApp users.
This is to prevent being a victim of account takeover by hackers, according to a statement released on Tuesday by Dr Reuben Muoka, the Director of Public Affairs at NCC.
NCC-CSIRT, according to Muoka, has underlined that the meta-owned service WhatsApp is gradually turning into a top target for hackers and con artists who are always exploring for methods to enter users’ accounts without their permission.
According to him, CSIRT defined 2FA as an identity and access management security technique that necessitates the use of two different forms of identification in order to access resources and data.
He quoted the advisory as saying: “In the world of messaging apps, one of the most popular and recognisable is WhatsApp.
“WhatsApp is 100 per cent free to use, has a great mobile app, and supports audio and video calls.
“Whether you rely on WhatsApp for all your messaging needs or just use it from time to time, it is recommended to set it up with (2FA).
“With this enabled, you will need to enter a custom PIN every time you log into WhatsApp from a new device, adding an extra layer of security to your account.
“The Team said, 2FA gives businesses or people the ability to monitor and help safeguard their most vulnerable information and networks.
“The 2FA is important because it prevents cybercriminals from stealing, destroying, or accessing your internal data records for their own use.”
The advice also notes that WhatsApp “provides two-factor authentication so you may further safeguard your account with a PIN,” according to Mouka.
“It is an optional feature that adds more security to your WhatsApp account, so it is recommended that everyone installs 2FA.”
He said that the CSIRT listed 10 steps for setting up 2FA on WhatsApp, including opening the app, selecting settings, selecting an account, selecting two-step verification, selecting enable,
“Enter the six-digit PIN you wish to use, tap next, then enter it a second time to confirm it, tap Next, add an email address for extra security and then tap next.
“For those concerned that their PIN might have been compromised or is easy to guess, they can change their WhatsApp PIN or email address by tapping settings.
“Two-Step Verification, tapping Change PIN or Change Email Address, Entering a new PIN or email address, and then tapping ‘next’ to effect the necessary changes.”
He disclosed that NCC established the CSIRT as the telecom industry’s cyber security incident centre to focus on occurrences that may have an impact on telecom users and the general public.
He added that ngCERT, which was created by the Federal Government to lessen the frequency of future computer risk situations by planning, safeguarding, and securing Nigerian cyberspace to prevent assaults, difficulties, or related events, collaborates with CSIRT.