For instructions on how to turn on MFA for specific services (and devices), please refer to the following links
When you set up MFA on your logins, you’ll be sent a PIN or code, often by SMS or email. You then need to enter this PIN to prove that it's really you (since it’s presumed only you - and not the Cyber Criminal) can access your phone or email. There are different types of MFA. So instead of entering a PIN or code, you may be able to enter your fingerprint, or face scan, or use an app (such as those provided by Microsoft or Google).
The important thing is that whatever type you choose (and you can check your service provider’s website to see which type they support), it only takes a few minutes to set up MFA. Once you’ve done this, you’re instantly much safer online. You won't have to enter the PIN (or provide your fingerprint) every time you use a service; depending on how it’s set up, you’ll only need to do this when ‘suspicious’ activity is detected (such as a login attempt from a different device, or a request to change the password).
It's easier than you think for someone to steal your password.
Even if you've always looked after your passwords (and taken the time to create a strong one and avoided the worst passwords that millions of people still use), they can still be stolen through no fault of your own.
The most common way that passwords are stolen is when an organisation holding your details suffers a data breach. Cyber Criminals will use passwords stolen in the breach to try and access other accounts, a technique (known as 'credential stuffing') that works because many people use the same password for different accounts.
Criminals may also try and trick you into revealing your passwords by sending you links to scam websites asking you to log in, either by email, text message or direct messages/chat (a term known as 'phishing').
Even if your passwords are hard to guess, that doesn't make them any harder to steal. In other words, even accounts protected with strong passwords will benefit from MFA.
If MFA is available for an account, the option to switch it on is usually found in the security settings for the account. Note it may also be called two-factor authentication (2FA) or 2-step verification instructions above.