Jump to content

Recommended Posts

Posted

Here's Why Account Authentication Shouldn't Use SMS

https://www.databreachtoday.com/heres-account-authentication-shouldnt-use-sms-a-11708

Quote

A database security blunder revealed on Friday serves as a reminder that the days of SMS-based authentication should be over.

The database, which wasn't protected by a password, contained 26 million text messages, some of which were two-step verification codes and password reset links, TechCrunch reports. When it was found, the database was still recording texts in near real-time, offering a huge resource for potential attackers.

 

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
×
×
  • Create New...