Joe Brockmeier (@jzb)Sep 23, 2024

Authenticating to a website, 2010: Type in username and password

Authenticating to a website, 2024:
- Type in username
- Look up 20-character password in password keeper
- wait
- Prompt for 2FA token
- Dig out phone
- Unlock phone
- Scroll through 50 services to find 2FA token for website
- Type in 2FA token
- Success
- Receive email alerting you to the fact you've logged in
- Six weeks later: receive email telling you service had been compromised eight weeks ago and you must change password.

Show threadOliver D. Reithmaier
@jzb my man. These things aren't done to spite you. These things are done to force the 90% of people who've never even heard of password manager apps (yes, you read that right) and keep reusing passwords to implement SOME form of security.
Sep 29, 2024 at 11:14pmWeb