To all the people telling me this will never happen, and I should stop trash talking 2FA (TOTP, SMS, etc *not* U2F). Please read this, then kindly apologise. https://twitter.com/josephfcox/status/1075391745502924801 …
Yep, get rich quick schemes are way more popular than getting rich the hard way, and get secure quick schemes are way more popular than U2F. The problem with both the quick easy fixes is they don't work very well. 
-
-
When the solution relies on an uneducated individual making the right choice, the benefits are going to be limited and susceptible to social engineering.
-
The "Google hasn't had an account takeover since security keys were handed out..." story is compelling but misleading. It's not like Google quit/disabled security efforts in other areas (email security, threat monitoring, etc) after security keys were handed out.
- 9 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
