We're making some important changes to the way you log into Capsule and we want to ensure you're up to speed on all the details. Here's what you need to know:
Email verification on sign in?
We're stepping up security by introducing an additional layer to your login process. From now on, when you log into your account or start using a new browser, you might be prompted to complete an extra step.
This is designed to safeguard your account and your valuable business data from various threats out there such as password reuse on different services, your computer being attacked by malware or your password being disclosed (e.g. someone sees your password while looking over your shoulder at a cafe).
How does email verification work?
The first time you log in on a new browser, Capsule will send you a verification code via email. You'll use this code to finalize your login. You'll only need to do this once a year, upon changing browsers, or if we detect any suspicious activity on your account.
However, if you've already enabled Two-Factor Authentication (2FA) or set up Single Sign-On (SSO) with Google Workspace or Microsoft 365, you won't need to go through email verification.
Three tips to improve your password security
Now, the big question: how can you step up your password security to complement these changes? Here are three tips:
1. Avoid password reuse
One common way passwords are compromised is through what is called “credential-stuffing” attacks. This is where you reuse your login details on multiple services. If these login details ever become public it’s easy for hackers to try those login details on many different services.
2. Embrace password managers
It’s easy to say don’t reuse passwords but it’s difficult to remember them all! Consider using a password manager like 1Password or iCloud Keychain to remember all your passwords and help you create complex passwords that are really hard to guess.
3. Implement Multi-Factor Authentication (MFA)
MFA adds an extra layer of security and is an even better way of protecting your login as it requires multiple forms of verification, such as something you know (password), something you have (e.g., a phone application), or something you are (biometric data like a scan of your face or fingerprint).
We offer the option of using an application on your phone like Google Authenticator or Authy to generate codes that provide an extra layer of security to your account.
Got questions or need assistance? Don't hesitate to reach out to our support team.
