I deal with a lot of people who are political targets but not necessarily state-level targets. There is a significant amount of opportunistic targeting of such people by people with zero tech skills nor economic incentives. Even SMS 2FA cuts that a lot.
-
-
(1) can probably do (2) a lot more often than (3) and do (4). I understand that these aren't necessarily seemingly that different or big steps but opportunistic attackers often share similar population vulnerabilities to people reusing passwords.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
I think we agree if you would say BFA and SMS 2FA have similar value, we just disagree on how valuable that is.

-
They don't deal with the same attacker group, though.
- Show replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.