Should two-factor authentication be utilized for all your accounts?