Enlarge (credit: Getty Images) Multi-factor authentication (MFA) is a core defense that is among the most effective at preventing account takeovers. In addition to requiring that users provide a username and password, MFA ensures they must also use an additional factor—be it a fingerprint, physical security key, or one-time password—before they can access an account. […]
Tag: 2fa
Coinbase erroneously reported 2FA changes to 125,000 customers
Enlarge / On Friday afternoon, Coinbase sent email and SMS text messages to 125,000 customers, erroneously telling them that their 2FA settings had been changed. (credit: SOPA Images) Cryptocurrency exchange Coinbase sent an automated message to a large number of its customers on Friday, saying “your 2-step verification settings have been changed.” Unfortunately, the message […]
Biden signs executive order to strengthen US cybersecurity
Enlarge (credit: Getty Images | Photographer is my life) Joe Biden signed an executive order on Wednesday in an attempt to bolster US cybersecurity defenses, after a number of devastating hacks including the Colonial pipeline attack revealed vulnerabilities across business and government. “Recent cybersecurity incidents… are a sobering reminder that US public and private sector […]
Hackers can clone Google Titan 2FA keys using a side channel in NXP chips
Enlarge (credit: Google) There’s wide consensus among security experts that physical two-factor authentication keys provide the most effective protection against account takeovers. Research published today doesn’t change that, but it does show how malicious attackers with physical possession of a Google Titan key can clone it. There are some steep hurdles to clear for an […]