Vulnerabilities

4 Likes

Wait, those headsets have yet to go the way of Google Glass?!

3 Likes

They can’t stop now, it’s bat country!

7 Likes

So I recently had to get a new cell phone number. It was a pretty smooth transition, except that I had a couple of older accounts with financial institutions who could only validate my identity by sending a two-factor authentication code to my old number, which I no longer have access to…

I managed to work out the issue with Paypal, and was ultimately able to get into my account and change their method of authentication to things other than a text to my cellphone, but in order for Bank of America to trust me, I will need to go to one of their branch offices with physical identification.

You might want to check all of your banking accounts and make sure that you’re not solely relying on your telephone number to be your only method of ID.

5 Likes

You should avoid it like the plague, as cell porting is one of the easiest social engineering attacks to pull off. Even TOTP is 10 times better, although there are loads of much more secure 2nd factors.

3 Likes

Good advice. I wish I’d changed it before I ditched my old number. Now, all of them are more secure. Thanks!

3 Likes

Top of the Pops?

3 Likes

Doesn’t roll off the tongue with the b…

1 Like
1 Like
3 Likes
1 Like

[The largest password leak in history exposes nearly 10 billion credentials (msn.com)]

https://www.msn.com/en-us/money/other/the-largest-password-leak-in-history-exposes-nearly-10-billion-credentials/ar-BB1pBGz6?ocid=BingNewsSerp

[Hackers leak nearly 10 billion credentials in largest leak in history - The Jerusalem Post (jpost.com)]

2 Likes
2 Likes
3 Likes

Passwords alone are useless, you need a second (and maybe third if it’s especially sensitive) ‘factor’. The second factors can be biometric (face recognition, fingerprint), numeric (TOTP is a 6 digit code that’s valid for 30 seconds, IIRC), or a physical device, which has to be connected to the computer to be touched or interacted with, and provide a password (there are other methods).

1 Like
2 Likes
1 Like

What’s worse than thieves hacking into your bank account? When they steal your phone number, too

https://apnews.com/article/fraud-identity-theft-fcc-wireless-providers-8df930f2983d589c4822bba53eedfc1b

2 Likes
2 Likes