TechHelpKB.com 📚Sep 11, 2024

Two-factor authentication (2FA) is very secure, but not invulnerable. There are tricks and loopholes that hackers can exploit to take over an account.

#authentication #2fa #2factorbypass #2factorauthetification #hacker
https://www.pcworld.com/article/2424573/watch-out-hackers-is-two-factor-login-insecure.html

6 ways hackers sidestep your two-factor authentication

It is considered very secure: logging in with two factors. However, this technology is also vulnerable to security gaps and social engineering. To really protect your accounts, you should be aware of these vulnerabilities.

PCWorld
MacounAug 13, 2023

Grundlagen- und Praxiswissen zur Implementierung von 2FA (Passkey im Eigenbau) präsentiert euch Klaus Rodewig, der auch Mitglied im Expertenkreis Cyber-Sicherheit des Bundesamtes für Sicherheit in der Informationstechnologie ist, auf der #Macoun23. Hol Dir die Best practices: https://macoun.de/anmelden

#2factorauthetification #passkey #Security #CyberSecurity #macounFFM

Macoun - Ticket zur Macoun

Personaldata.infoJul 26, 2023

Enable two-factor authentication (2FA) whenever possible! With 2FA, signing in takes something you know (password) AND something you have (like a code to your phone). This adds a much needed extra layer of security to keep your accounts secure.

#2factorauthetification #security

Axel KrysztofiakJun 3, 2023

#2factorauthetification ist schon was feines. Nicht aber, wenn man durch einen Syncfehler und eigene Blödheit alle Tokens aus der Authenticator-App verliert. Der Nachmittag ist gerettet. 🤦

Kleiner Tipp: Haltet immer eure Backup-Codes griffbereit.
#2FA

James House-Lantto (He/Him)May 9, 2023

https://www.reviewgeek.com/152864/security-experts-object-to-google-authenticators-new-syncing-feature/

TL:DR
Google Authenticator is adding Account syncing of OTP/2FA codes. The problem is this Sync is not end-to-end Encrypted.

Also Google Authenticator QR codes contain website & account names.

Meaning if someone intercepts the data in transit, or gets access to your google account, they have full access to all your 2FA.

#Google #2FA #security #2factorauthetification #passwords

Security Experts Object to Google Authenticator’s New Syncing Feature

The latest Google Authenticator update adds account synchronization—essentially, you can now save one-time passwords to your Google account, which may come in handy if lose or upgrade your phone. But, oddly enough, security researchers aren’t happy with this highly-requested feature.

 Efertone Mar 13, 2023
The perfect reason not to use a service and never pay for their service, not a single penny. Security should be fundamental and not an extra feature.

(I can look away and forgive if you don't have dark mode, but 2fa? no I can't)

#security #2fa #2factorauthetification
Ralf BachmannFeb 19, 2023

2-Factor Authentication App "Authy". Same App (Cloud) for many devices and OS.

https://authy.com/

SMS 2FA #SMS2FA #2FA #2factorbypass #2factorauthetification #Authy

Authy | Two-factor Authentication (2FA) App & Guides

Two-factor authentication (2FA) adds an additional layer of protection beyond passwords. Download our free app today and follow our easy to use guides to protect your accounts and personal information.

Authy