How do I know if it's already enabled on my account?
If you activated 2FA after our dashboard launch last August 2020, or do not see this banner when logged in, it should already be enabled for your account. Try logging out and logging in again
If you see the banner, it means you still need to activate 2FA for your account, or "opt in." Follow the instructions on this article.
What has changed on the login flow now that 2FA is applied?
Previously, login flow consisted of typing your credentials, going through Captcha and entering your password. If your account is 2FA-enabled, you will be asked to enter the six-digit OTP from your authenticator as the final step.
How does this improve account security?
An authenticator app (such as Google authenticator) is usually installed on a smartphone and generates a 6 digit passcode that refreshes after a certain amount of time. The passcodes are generated from a secret code that is shared between the service you are using (e.g. Xfers) and your device.
In the event that anyone has access to your password, they will not easily gain access to your account without possessing your code or your device as well - therefore adding a layer of protection against unauthorised access to your account.
What if I want to opt out?
Due to security risks, 2FA may only be reset by sending us a request through this form. You will be prompted to answer a couple of verification questions to ensure that the owner of the account is authorising the reset.