To all the people telling me this will never happen, and I should stop trash talking 2FA (TOTP, SMS, etc *not* U2F). Please read this, then kindly apologise. https://twitter.com/josephfcox/status/1075391745502924801 …
-
-
We can't get people to sign up for SMS 2FA, but you're gonna get them to buy a Yubikey? We're still fighting to get Giants like Walmart to even support SMS 2FA. If you can't get someone to go to the doctor, practicing good hygeine is a pretty damn good start
-
Please don't burn all our goodwill trying to get people to support SMS 2FA. Instead let's focus our efforts on encouraging adoption of *real* solutions that actually solve the problem.
- 3 more replies
New conversation -
-
-
Sensationalism much? Thats an apples and oranges comparison. A security control that some actors are able to bypass does not make it worthless. The majority of phishing campaigns have nothing in place for 2FA.
-
The attack to bypass 2FA is.... phishing. You just phish it. The phisher just has to do some more phishing. The solution that you say solves phishing, can be phished and you're astonished I don't think it's very good.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.