Skip to main content

Search

Items tagged with: 2fa



Wenn man mal die Nummer wechseln muss, ist man bei 2-Faktor-Identifizierung 眉bers Fon echt angeschissen.

#2FA

#2fa


El lado del mal - Tutoriales para poner un Segundo Factor de Autenticaci贸n en tus identidades digitales https://www.elladodelmal.com/2023/09/tutoriales-para-poner-un-segundo-factor.html #latch #2fa #TOTP #identidad #Amazon #Google #Facebook #GitHub #Instagram


@Friendica Support
ich wollte meine #2FA in #Friendica neu einrichten, da ich auf meinen Zweiten Faktor keinen Zugriff mehr habe.
Ich habe dazu in einem angemeldetem Browser die 2FA deaktiviert.
Wenn ich das nun aktiviere, erscheint nur diese Meldung uns sonst nichts.
Ich kann also das ganze wieder deaktivieren oder beenden.


Hoy me entere que #Bluesky no tiene #2FA 馃槯馃槯馃槻


驴Qu茅 es la autenticaci贸n de m煤ltiples factores y por qu茅 deber铆as usarla? https://kas.pr/9njk 馃攽馃攼馃摬馃憗锔 #2FA
#2fa


I have officially moved all of my 2FA stuff out of Authy and over to Aegis.

I will no longer use Authy and I would encourage nobody else to do so either as it's one of the worst 2FA apps ever made for several reasons.

#Authy #Aegis #2FA #TwoFactorAuthentication #Android #Apps

A screenshot like image of Aegis, the Android app for two-factor authentication.


Google has just updated its 2FA Authenticator app and added a much-needed feature: the ability to sync secrets across devices.

TL;DR: Don't turn it on.

The new update allows users to sign in with their Google Account and sync 2FA secrets across their iOS and Android devices.

We analyzed the network traffic when the app syncs the secrets, and it turns out the traffic is not end-to-end encrypted. As shown in the screenshots, this means that Google can see the secrets, likely even while they鈥檙e stored on their servers. There is no option to add a passphrase to protect the secrets, to make them accessible only by the user.

Why is this bad?

Every 2FA QR code contains a secret, or a seed, that鈥檚 used to generate the one-time codes. If someone else knows the secret, they can generate the same one-time codes and defeat 2FA protections. So, if there鈥檚 ever a data breach or if someone obtains access .... 馃У

#Privacy #Cybersecurity #InfoSec #2FA #Google #Security


The timeless art of authenticators!
All these authenticator apps are free and offer in-app purchases. You install them to discover that you can't scan any QR code until you subscribe, $40/year with 3 days free trial. The apps are very similar, as if it was the same developer or "template" 馃

#iOS #AppStore #2FA #Privacy #InfoSec


Contin煤a la serie Aplicaciones Libres para #Android en #noroute2host. 驴Te da pereza activar el #2FA en los servicios que usas? Pues hoy se habla de #Aegis #Authenticator para que sea f谩cil y seguro hacer uso del segundo factor de autenticaci贸n. 隆La seguridad no es negociable!

Aplicaciones libres para Android (III): Aegis Authenticator 鈥 noroute2host.com
https://noroute2host.com/aegis-authenticator.html


El lado del mal - Chema Alonso en Mastodon https://www.elladodelmal.com/2022/11/chema-alonso-en-mastodon.html #Twitter #web3 #mastodon #latch #2fa


Aegis gestor de tokens libre #blog #2fa #aegis #c贸digo #c贸digo_libre #gesti贸n #gratis #mfa #open_source #otp #token https://www.bujarra.com/aegis-gestor-de-tokens-libre/


SMS 2FA provider "Mitto" sold user identities, locations and phone records to surveillance contractors.

#2FA #Surveillance #Anonymity #Anonymous #News #Mitto #privacy #HumanRights #SelfCensorship #Censorship #FreeSpeech

On #Peertube:
https://tube.tchncs.de/w/f7vRZo4BFPCTusfFTguLPk


(4/4) In related News, FCC is targeting SIM swapping/port-out fraud.

#FCC #SIMswapping #Infosec #PortOutFraud #Cybersecurity #News #telecom #2FA

https://krebsonsecurity.com/2021/10/fcc-proposal-targets-sim-swapping-port-out-fraud/


(3/4) Of course, w/it comes to security, SMS 2FA w/be better than nothing...

-- unless further manipulation made available via Phone number. And in certain cases SMS can offer this (ie: pw change).

#2FA #Infosec #Cybersecurity #Security #FCC #password
https://krebsonsecurity.com/2021/03/can-we-stop-pretending-sms-is-secure-now/


(2/4) Companies empathetic to user security/#privacy concerns can offer more secure alternatives.

Better Options Include:

*2nd e-mail
*Hardware Keys
*Authenticator Apps
*Push Based

#Security #2FA #Privacy #SocialMedia #Infosec #Cybersecurity #SMS

https://www.eff.org/deeplinks/2017/09/guide-common-types-two-factor-authentication-web


(1/4) SMS #2FA (2 factor authentication) carries history of enabling account takeovers: celebrities/content creators, bank accts.

Carrying over #privacy concerns:

Certain companies w/history of sharing phone numbers provided for "security." #Infosec
https://www.cbsnews.com/news/facebook-said-to-use-peoples-phone-numbers-for-ad-targeting/


Authenticador: App para generar c贸digos de autenticaci贸n 2FA #seguridad #autenticaci贸n #2fa https://ubunlog.com/authenticador/

Este sitio web utiliza cookies. Si contin煤a navegando por este sitio web, usted acepta el uso de las cookies.