- This post will unlock the reality behind two-factor authentication.
It is where you log in with a password. �KS���
And a unique code is sent to you for second login attempt.
Many of these codes are sent as text o your phone.
This cold be a problem..... Because your phone number is the weakest link in this process.
Ever move your phone number from one sim to another? Phone providers only requires a few details to do this for you.
Credit card number
Old Address
Last four digits of SSN
These details are often seen in large database leaks. If a malicious attacker has this info they can have the phone carrier and migrate your number to another sim.
If they get through the first login screen of an account the code gets sent to their sim with your number.
Image
It happened to blacks lives matter activist ''Deray Mackesson''. There a few options that offer a more secure exchange.
Google offers an option called Google prompt
While aps like Authy generates there own codes and integrate with Facebook, Amazon, Dropbox and more.
Physical devices like Yubikey are also an option.
Their are USB devices are required to login.
This makes hijacking any of your accounts very difficult.
Check your important accounts they may offer two-factor alternatives
Please Upvote if you like the post and feel free to share your ideas Via comments.
Thanks.