We have enforced 2FA across all our staff for all the tools that we use daily: email, GitHub, task trackers, and others.
Even without hardware keys, it makes an attacker’s job much harder than it used to be. The most obvious way to increase security is to opt for two-factor authentication (2FA) that is widely supported. A good old password, even coupled with a password manager, does not cut it anymore. In a hostile environment of the modern web, though, it is easier said than done. Our clients trust us with their source code and, even more importantly, with access to their production servers, and this trust cannot be broken. With more employees and more clients, there is a demand for stronger security. If you haven’t set up your YubiKey yet, this is a good place to start.Įvil Martians are growing.
