Image: iStock/Kaspars Grinvalds

Why 2FA Matters More than Ever in the Age of AI

AI-powered scams are becoming harder to recognize. Two-factor authentication remains one of the simplest and most effective ways churches can protect ministry accounts and sensitive data online.

Jonathan Smith, IT Director and Consultant
Bio

Online security seems to be a never-ending conversation. 

I read recently where cybersecurity professionals are dropping out of what is increasingly a high-pressure, low-reward business. If everything stays safe, no one cares. But if a breach occurs, the pressure can be too much.

The age of artificial intelligence (AI) is not only powering some great advances in technology, but also some great advancements in evil. We should all desire to be good stewards of our data and that stewardship requires good security practices. 

Church Law & Tax members get trusted guidance, practical tools, and expert insights to help protect their ministries from emerging cybersecurity threats, AI-driven scams, and other costly risks facing churches today.

Evolving Threats

AI has certainly added pressure because low-tech attacks now appear valid and credible. 

The appeals made via email using broken English and poorly designed fake web pages are long gone thanks to AI tools that bad actors use. Fraudulent attempts now read and look legitimate.

However, there are steps you can take to protect yourself and your church, and thus avoid becoming a tech support burden. 

Two-factor (2FA) or multifactor authentication (MFA) is one way to protect yourself and your ministry online. 

Examples of 2FA and MFA include codes sent via text or email or an authenticator app on a phone.

Everything that can utilize 2FA or MFA should utilize it, and if a system in your church office canโ€™t, you might want to do a risk assessment before you proceed.. 

Breaking down 2FA

While not perfect, 2FA is the simplest way to protect your online accounts. Even in the age of AI, 2FA slows down the damage if you get phished or tricked into giving your password away.

While a great safety net, 2FA still requires some discernment. 

Many times, 2FA fails because people get the prompt via an authenticator app and then blindly approve it without thinking through if they logged in or not. 

Youโ€™ve probably also noticed that most 2FA codes sent via text or email remind you to NEVER give these codes to anyone. 

Why? 

Because scammers know if they can get the code, they can obtain your data. Many times, scammers can trick you into giving the code to them. After all, they might have already tricked you into giving them your password through a phishing scheme.

Use 2FA or MFA on everything and make sure to use a password manager to ensure you never repeat a password.

When it comes to ways to get a two factor or multi factor authentication code, the most common method is via SMS or text message. This is because that was first.

As technology evolved, authenticator apps became increasingly popular. From a security standpoint, the Authenticator app is the most secure. Text messages can be hijacked and stolen, making this method less secure. Still better than nothing, but less secure, nonetheless.

The challenge with authenticator apps is every provider has their own.

You look at some peopleโ€™s phones, and they have 30 different two-factor authentication apps for all the various products or services they use. While thatโ€™s better than not having two-factor at all, there are some ways to streamline the process.

Google Authenticator, Microsoft Authenticator, Authy, OneAuth, and others offer a centralized way to track all of your two-factor authentication codes without having to have an app for each one.

Sign up for our newsletters to receive timely insights, practical tech guidance, and church-focused risk management content delivered straight to your inbox.

Conclusion

This side of heaven, no technology is perfect, and nothing is completely secure. But we must do our best to protect our data and the data of the ministries entrusted to us. 

While not always the most convenient tool, 2FA and MFA provides reasonable security in exchange for a little inconvenience. 

We should not fear AI, but rather, plan for its wise use, which includes our security posture through tools like 2FA. Who knows, we might even have to 2FA to get into heaven. Ok, maybe not, but we should at least work 2FA into everything here on earth.

Jonathan Smith is the President of MBS and the Chief Technology Officer at Faith Ministries in Lafayette, IN.ย  He is an author and frequent conference speaker.ย  You can reach Jonathan at jonathans@mbsinc.com and follow him on X @JonathanESmith.

Jonathan Smith is director of technology for Faith Ministries in Lafayette, Indiana. He is also president of MBS, Inc., a provider of technology services that exclusively serves churches and ministries. He is a published author and a frequent speaker at conferences.
Posted:

This content is designed to provide accurate and authoritative information in regard to the subject matter covered. It is sold with the understanding that the publisher is not engaged in rendering legal, accounting, or other professional service. If legal advice or other expert assistance is required, the services of a competent professional person should be sought. "From a Declaration of Principles jointly adopted by a Committee of the American Bar Association and a Committee of Publishers and Associations." Due to the nature of the U.S. legal system, laws and regulations constantly change. The editors encourage readers to carefully search the site for all content related to the topic of interest and consult qualified local counsel to verify the status of specific statutes, laws, regulations, and precedential court holdings.

Related Resources

Visit Store

Church IT, 3rd Edition

This updated and expanded edition of Church IT offers practical guidance on careful, strategic approaches for leveraging IT effectively to advance the churchโ€™s mission.

Ask Richie

๐Ÿ‘‹ Hello! I'm Richie, your AI assistant. How can I help you today?
ajax-loader-largecaret-downcloseHamburger Menuicon_amazonApple PodcastsBio Iconicon_cards_grid_caretChild Abuse Reporting Laws by State IconChurchSalary Iconicon_facebookGoogle Podcastsicon_instagramLegal Library IconLegal Library Iconicon_linkedinLock IconMegaphone IconOnline Learning IconPodcast IconRecent Legal Developments IconRecommended Reading IconRSS IconSubmiticon_select-arrowSpotify IconAlaska State MapAlabama State MapArkansas State MapArizona State MapCalifornia State MapColorado State MapConnecticut State MapWashington DC State MapDelaware State MapFederal MapFlorida State MapGeorgia State MapHawaii State MapIowa State MapIdaho State MapIllinois State MapIndiana State MapKansas State MapKentucky State MapLouisiana State MapMassachusetts State MapMaryland State MapMaine State MapMichigan State MapMinnesota State MapMissouri State MapMississippi State MapMontana State MapMulti State MapNorth Carolina State MapNorth Dakota State MapNebraska State MapNew Hampshire State MapNew Jersey State MapNew Mexico IconNevada State MapNew York State MapOhio State MapOklahoma State MapOregon State MapPennsylvania State MapRhode Island State MapSouth Carolina State MapSouth Dakota State MapTennessee State MapTexas State MapUtah State MapVirginia State MapVermont State MapWashington State MapWisconsin State MapWest Virginia State MapWyoming State IconShopping Cart IconTax Calendar Iconicon_twitteryoutubepauseplay
caret-downclosefacebook-squarehamburgerinstagram-squarelinkedin-squarepauseplaytwitter-square