Skip to main content

Search

Items tagged with: 2fa


Second Factor #SMS: Worse Than Its Reputation


Source: https://www.ccc.de/en/updates/2024/2fa-sms

IdentifyMobile, a provider of 2FA-SMS, shared the sent one-time passwords in real-time on the internet. The #CCC happened to be in the right place at the right time and accessed the data. It was sufficient to guess the subdomain "idmdatastore". Besides SMS content, recipients' phone numbers, sender names, and sometimes other account information were visible.


#news #security #internet #2fa #mobile #cybersecurity #problem #password


Millions Of #google #whatsapp #Facebook #2FA #Security Codes #Leak Online

Security experts advise against using SMS messages for two-factor authentication codes due to their vulnerability to interception or compromise. Recently, a security researcher discovered an unsecured database on the internet containing millions of such codes, which could be easily accessed by anyone.

#news #tech #technews #technology #privacy

https://www.forbes.com/sites/daveywinder/2024/03/06/millions-of-google-whatsapp-facebook-2fa-security-codes-leak-online/


Friendly Reminder to #2FA users: Imagine your primary machine fails today. How will you restore your access to your online accounts?

Please ensure you saved your scratch token somewhere and have working backups of your TOTP app or a backup hardware key.

Thank you!
#Backup


@Friendica Support
ich wollte meine #2FA in #Friendica neu einrichten, da ich auf meinen Zweiten Faktor keinen Zugriff mehr habe.
Ich habe dazu in einem angemeldetem Browser die 2FA deaktiviert.
Wenn ich das nun aktiviere, erscheint nur diese Meldung uns sonst nichts.
Ich kann also das ganze wieder deaktivieren oder beenden.


Sagt mal !Friendica Support #Friendica unterstützt kein #2FA mit einem Yubikey, oder?


In the latest award-winning "Smashing Security" podcast we tackle Twitter's tribulations, property scam our way to millions of dollars, and spotlight on Google's pricey privacy problem.

Find it in your favourite podcast app, or at https://www.smashingsecurity.com/298

#RIPTwitter #2FA #podcast #cybersecurity #smashingsecurity
Smashing Security 298 - with an image of a very ugly futuristic house.


Nachdem ich gestern bei meiner Nextcloud schon #2FA aktiviert habe, bin ich am überlegen, ob ich das bei meinem #Friendica Konto nicht auch machen soll?
Wer nutzt denn alles bei Friendica 2FA und kann berichten, wie stabil das ganze läuft?
Gibt es irgendwelche Nachteile dadurch?


Love to spend 3 hours regenerating all my #2FA tokens before I send my mobile device for screen repair. At least now I won't have to do it ever again as I stored the tokens in #KeePass which generates the QR code for authenticator deployment.


No, #PayPal, if I set up two-factor authentication, it wasn't so that you give me the choice between using a token or sending it by SMS to my number!
It was precisely so that who has access to my phone number (rather than my phone itself) would be irrelevant!
#security #fail #2FA


Any grassroot suggestion for a simple two factor authentication plugin for #Wordpress ?

#2fa #security