fbpx

Free tools and resources for Data Protection Officers!

Tag Archives for " 2FA "

Facebook’s Phone Number Policy Could Push Users to Not Trust Two-Factor Authentication

Users are angry that Facebook is letting others, including advertisers, look up users via the phone numbers they provided to enable two-factor authentication.

What’s worse, it looks like there’s no way to completely remove your phone number that Facebook has collected. This screw-up, intentional or not, could discourage adoption of two-factor authentication, leaving people at risk of getting hacked.

Source: Facebook’s Phone Number Policy Could Push Users to Not Trust Two-Factor Authentication – Motherboard

2-factor authentication may be hackable, expert says

Cybersecurity professionals have advised enabling two-factor to add an extra layer of security — but according to at least one expert, this may not be a silver-bullet. Kevin Mitnick, who was once the FBI’s most wanted hacker and now helps companies defend themselves, found that two factor authentication can be vulnerable.

Full article: 2-factor authentication may be hackable, expert says

How Hackers Bypass Gmail 2FA at Scale

Hackers can bypass these protections, as we’ve seen with leaked NSA documents on how Russian hackers targeted US voting infrastructure companies. But a new Amnesty International report gives more insight into how some hackers break into Gmail and Yahoo accounts at scale, even those with two-factor authentication (2FA) enabled.

They do this by automating the entire process, with a phishing page not only asking a victim for their password, but triggering a 2FA code that is sent to the target’s phone. That code is also phished, and then entered into the legitimate site so the hacker can login and steal the account.

Full article: How Hackers Bypass Gmail 2FA at Scale – Motherboard

>