Two-factor authentication (2FA) is a security process in which users provide two different authentication factors to verify their identity, enhancing protection against unauthorized access. By combining something the user knows (like a password) with something the user has (such as a mobile device), 2FA significantly reduces the risk of compromised accounts from phishing or other cyber attacks.