You are viewing a single comment's thread from:
RE: Always Put 2FA on Your Exchange Accounts
Another reason to avoid SMS 2FA is due to the well documented flaws in SS7 (Signaling System 7)
https://en.wikipedia.org/wiki/Signalling_System_No._7
Google Authenicator is hands down one of the best apps for 2FA
I also read today that Apple users are being extorted even though they have 2FA setup on their accounts:
Great pointers, thanks.
That Apple story is amazing and another message to website and app designers tht 2FA can't work if you don't require it at all times. Giving access to account maintenance and password changing without 2FA is stupid!
I work in computer security and have seen a couple of websites which require 2FA on the surface, but do not actually check for the token, or offer a 'remember me' option which bypasses the 2FA. Businesses are more worried about the user experience (usability) than making the applications secure. They miss the point that if you get hacked, people definitely won't be using the website...
Yes. A false sense of security or a way to avoid blame when they are hacked. "We had 2FA."
google authenticator is not a good idea, if you loose your phone you will be in a big troble, use authy instead.