The most traditional method of protecting local and remote logins has been the use of a simple username and password. But as we all know, passwords are painfully insecure and can be immensely harmful. Once your password is revealed, you can't even figure out if anyone is accessing your account illicitly.
In the past, we have seen big organizations being compromised just by gaining knowledge of its users’ passwords.Two-factor authentication can drastically reduce the incidence of online identity theft, phishing expeditions, and other online frauds because stealing the victim's password is not enough to give a thief access to their information.
Two-Factor Authentication (TFA) adds an extra layer of security to your account.Once enabled, Sign-In will require you to enter a unique verification code generated by the Google authenticator app on your mobile device. Optionally the verification code can be sent via SMS or call.
This verification code along with your password will help you to access your Zoho Account. So, you'll protect your account with something you know (your password) and something you have (your phone). Thus, TFA uses two layers of protection to make sure that only you can have access to your Zoho account.