Sanity check:... - Security - kbin.social

trendless, 1 month ago

Sanity check:

2FA via SMS was already risky and unsafe, but hey let's make it even worse by adding the ability to have the code sent to a friend?!

:mastomindblown:

Is it really that hard to setup an authenticator app like Aegis or use the one built into keychain?

#2FA #MFA #Security #Telegram #Authentication

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

Image

Image alternative text

maleve, 1 month ago

@trendless

Case in point.

https://globalnews.ca/news/10376032/toronto-couple-sim-swap-scam/

I really wish there was more detail here about how passwords got reset.

I just wish more places would accommodate FIDO keys for those who wish to use them.

I’d even prefer a mail based code given my mail is yubikey protected.

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

maleve, 1 month ago

@trendless i mean 2016…

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

Private

Federation

Status:

Instances:

/m/security

Microblog (2839)

Thread

trendless

@trendless@zeroes.ca

Added: 1 month ago
Online: -
Boosts: 0

Magazine

Security

@security@kbin.social

Security offline and online

Rules

Be civil
Stay on topic
No spam

Created: 10 months ago
Owner: On
Subscribers: 39
Online: -

Moderators

On

Active people

Related posts

Companies doing business in the United States should have liability for users and customers' personal information. Companies sharing that data with third parties should retain that liability, and the third parties should accrue additional liability. (NOT assume responsibility for the liability!) By liability, I don't mean "pay...

Show more

4 days ago to privacy

Windows vulnerability reported by the NSA exploited to install Russian malware...

Show more

1 day ago to microsoft

Cyberthreat landscape permanently altered by Chinese operations, US officials say...

Show more

1 day ago to China

Update your Chrome browser ASAP. Google has confirmed a zero-day exploited in the wild https://zdnet.com/article/update-your-chrome-browser-asap-google-has-confirmed-a-zero-day-exploited-in-the-wild/ by @sjvn...

Show more

3 days ago to chrome

Related threads

Hungarian official speaks of "security guarantees" for Russia and hindering Ukraine's ascension to NATO

Show more

8 months ago to Ukraine_UA

Cisco to Buy Splunk for $28 Billion in Giant AI-Powered Data Bet (Paywalled)

Show more

7 months ago to tech

FBI makes a massive botnet infecting more than 700,000 computers uninstall itself

Show more

8 months ago to Cybersecurity

Actively exploited Cisco 0-day with maximum 10 severity gives full network control

Show more

6 months ago to networking

Support Us