[dba-Tech] SMS and 2FA
Jim Lawrence
accessd at shaw.ca
Tue Aug 7 14:49:57 CDT 2018
Hi All:
I think SMS protocol is over-due for retirement. Mail and in the following case, supposedly safe 2FA (two-factor authentication), SMS protocol was but an open door to Reddit's data files. How embarrassing:
https://arstechnica.com/information-technology/2018/08/password-breach-teaches-reddit-that-yes-phone-based-2fa-is-that-bad/
http://bit.ly/2M2TeKC
Of course we have a Google solution:
https://www.zdnet.com/article/google-wants-you-to-stop-using-its-sms-two-factor-sign-in/
https://zd.net/2ORVUIY
Jim
More information about the dba-Tech
mailing list