Skip to main content

in reply to Liam @ GamingOnLinux 🐧🎮

Funfact:
SMS 2FA is inherintly unsecure and should be avoided at all cost.

Second funfact:
SMS 2FA is mostly used to get active phone numbers to sell for marketing purposes.

So Elon is doing unintentionally everybody a favour.

And next week there is the headline that Twitter is flodded with millions of bot accounts... What elon doing?
in reply to Liam @ GamingOnLinux 🐧🎮

If thats SMS, it should be removed alltogether
https://krebsonsecurity.com/2021/03/can-we-stop-pretending-sms-is-secure-now/

So this would be actually a good thing.
in reply to Liam @ GamingOnLinux 🐧🎮

I was genuinely surprised to see Twitter doing something good under Elon's leadership. A second later once again, I was genuinely surprised to see that you can actually fuck up 2fa so badly
in reply to Liam @ GamingOnLinux 🐧🎮

text message based #2FA is not considered safe for a longer time, so replacing it with another 2FA method is highly recommended anyway, but they way they communicate is just hilarious. I don’t care about subscription levels at Netflix, I just want movies, and subscription levels are way more impactful there than on #Twitter. Who gives a damn what blue users, while people just want to communicate freely.. sounds like nonsense to me.
in reply to Liam @ GamingOnLinux 🐧🎮

Journalists that use Twitter will be like "What's a Yubikey? What the hell is Google Authenticator?" THIS is the main problem. No one's gonna educate them about the alternative 2FA and it will be like talking to a brick wall to those that try.
in reply to Liam @ GamingOnLinux 🐧🎮

It is quite amazing how much time and energy some of us spend on a social medium we all left.
in reply to Liam @ GamingOnLinux 🐧🎮

doesn't matter when you look at elon's bluebird: https://youtu.be/MnfQmgL0IYs
in reply to Liam @ GamingOnLinux 🐧🎮

who knew March 20th would be another day so many of us just give up on that tiresome place.
It's depressing to go on their right now, by March we will have moved on.
#Twitter
in reply to Liam @ GamingOnLinux 🐧🎮

TOTP and U2F/WebAuthn keys work for free and are much more secure. Everyone should stop using SMS 2FA. More info in this great article. https://krebsonsecurity.com/2021/03/can-we-stop-pretending-sms-is-secure-now/ #infosec
in reply to Liam @ GamingOnLinux 🐧🎮

Why use SMS at all though, if you still have the option of a hardware security key or 2FA authentication app, you're considerably better off with the latter two, rather than having your token tied to your phone number and delivered to you in plain text. SMS should only be used for 2FA if no better option exists.
in reply to Liam @ GamingOnLinux 🐧🎮

to be fair, sms is the only one that has direct costs to them every time someone uses it.

Lo, thar be cookies on this site to keep track of your login. By clicking 'okay', you are CONSENTING to this.