Magento 2.2.x and earlier will soon lack the support and updates to keep your Magento store secure and running efficiently. There will be third party developers to try and help those that do not want to take advantage of the new security enhancement and features but why take that risk? Not only is Magento 2.2.x and earlier losing updates, PHP 7.1 is now deprecated and not considered secure especially for eCommerce transactions. Magento 2.3.x has the support of PHP 7.2 and PHP 7.3. This will enhance performance and help the Magento team add new features to Magento 2.3 as well as enhancing security.
Google reCAPTCHA is a free service offered by Google to help protect your admin and user login page, registration page, contact form and forgot password page. It has an in-built tool for detecting malicious and spam activities. Now Magento 2.3 has this feature built in.
Magento 2.3 now has another layer of protection – two-factor authentication. A user will have to enter their username and a passphrase and then provide other information supplied by the Google Authenticator app to gain access to the website.This will help to protect your website from malicious attempts to gain access to your Magento admin panel.