Had a conversation about this literally yesterday with @harlo. Very scary exploit, and no easy fix.https://twitter.com/deray/status/741356462610513920 …
-
-
En réponse à @xor
You could have a secret "burner" number that you only use for 2FA. But that's too much trouble for almost anyone.
6 réponses 5 Retweets 15 j'aime -
En réponse à @xor
Almost every 2FA system falls back to phone numbers. Makes it very scary that phone-number-as-ID is highly vulnerable to social engineering.
8 réponses 42 Retweets 40 j'aime -
En réponse à @xor
And if you didn't realize that phone-number hijackings are on the rise: it just happened to FTC's chief technologist http://arstechnica.com/tech-policy/2016/06/ftcs-chief-technologist-gets-her-mobile-phone-number-hijacked-by-id-thief/ …
2 réponses 23 Retweets 26 j'aime -
En réponse à @xor
@agcrocker Did Cranor say which provider she was with?2 réponses 0 Retweet 1 j'aime -
En réponse à @sarahjeong @agcrocker
(she added an extra-security PIN; T-Mo and ATT use passcodes not PINs, Sprint's is non-configurable)
1 réponse 0 Retweet 3 j'aime
Le chargement semble prendre du temps.
Twitter est peut-être en surcapacité ou rencontre momentanément un incident. Réessayez ou rendez-vous sur la page Twitter Status pour plus d'informations.