Two-factor authentication lowers your risk of a data breach caused by unauthorized remote access to sensitive data. If you use your cellphone as a means of secondary authentication, consider an alternative method to text messaging, as weaknesses in the cellular network can cause messages to be intercepted. Two-factor is required by PCI compliance..