A financial company recently discovered unauthorized access to sensitive customer data. After investigating, they found that the attackers exploited weak authentication mechanisms. Which control should the company implement to strengthen their authentication process?
Use biometric authentication exclusively
Increase password complexity requirements
Enforce stronger password expiration policies
Implement multi-factor authentication (MFA)