Which preventive measure can mitigate risks associated with unauthorized access to stored credentials?

Multi-factor authentication (MFA) is a critical preventive measure for mitigating risks associated with unauthorized access to stored credentials. MFA enhances security by requiring users to provide multiple forms of verification before they can access sensitive information or systems. This typically involves something the user knows (like a password) and something the user has (such as a mobile device for a verification code), or something the user is (biometric factors).

The reason MFA is particularly effective is that even if an attacker gains access to a user's password, they still cannot access the account without the additional authentication factor, which significantly reduces the likelihood of unauthorized entry. This layered approach to security ensures that just having a single piece of information (e.g., a password) is not enough to compromise the system, thereby safeguarding stored credentials against unauthorized access.

In contrast, while regular software updates contribute to overall security by patching vulnerabilities and improving software performance, they do not directly prevent unauthorized access to credentials. Data backup solutions are important for data recovery but do not address the risk of unauthorized access. Network segmentation helps to limit access to different parts of a network but does not specifically focus on securing credentials. Thus, multi-factor authentication stands out as the most effective preventive measure for protecting stored credentials.