Thank you for your feedback. This is an excellent idea. I'm going to take this back to our design team. I'm also going to open this page for voting so that other customers can voice their feedback too.
Over the last week, I've seen multiple phishing attacks using what appear to be compromised Constant Contact accounts. It's possible accounts have been compromised through password spraying or using credentials that have been obtained from other breaches (password reuse).
Since Constant Contact is considered a trusted platform, phishing emails may bypass some of the usual controls.
While 2FA isn't a panacea, it prevents accounts from being easily compromised using the methods I mentioned above.
I would like to suggest that two-factor authentication support be added to your product. Our account was recently hacked and an embarrassing was sent out.
We need to secure our environment beyond username and password.
2FA should be implemented as soon as possible. As one of the larger email marketing providers and therefore a target, this must be a priority for constant contact. We will be forced to move to a different company if its not brought in soon, our customer list is too valuable.
For security purposes, it would be a good idea to have dual factor authentication when we log into Constant Contact. Maybe have a code sent to a phone number to add to our passwords?
I want to bump this, but also wanted to put forth the idea that if you add 2FA for smartphone devices please add a 3rd 2fa option for other that smartphones as what happens a lot is people use their personal smartphones for this and then leave the org, and the org has trouble regaining access to the account. So some other option besides smartphone should be made available as well.
Hi @LarryL7067multi-factor authentication is a new feature we currently have in beta. We also offer users the option to opt in if they request to. If you would like to be included in this beta testing please call into our phone support for further assistance. One of these agents can help take any necessary steps while maintain your account security.