Hackers have found ways to avoid double-factor verification

Websites that until yesterday simply required a password already require complex passwords and additional security options such as two-factor verification systems.

Two-factor verification (2FA) is one of the most important steps in terms of increasing online security where full-fledged users can access online services such as Facebook, Twitter or Gmail with maximum security.

Websites that until yesterday simply required a password already require complex passwords and additional security options such as two-factor verification systems.

Yet even the latter is not without blemish. A new report by Amnesty International details how hackers have grown to manipulate these systems as well.

These systems usually require setting a code that is sent by SMS when you fill in your username and password to log in.

The option is designed as the latest hijack barrier barrier, even if they break the security of a website and steal passwords.

If hackers have duplicate two-factor authentication codes, then the system is overrun.

Amnesty International says hackers are beginning to use automated systems and phishing sites to get you two-factor verification codes.

First they steal their passwords with a phishing page, then set their password in Gmail by enabling 2FA and then enticing users to place the 2FA code on the phishing page.

Something like that started to apply with Gmail and when hackers enter your account, it does not hinder anything from disabling the security measure.

During 2017-2018 hackers targeted over 1,000 accounts in Google and Yahoo in the Middle East and North Africa.

While the news is discouraging, we recommend that you use the two-factor verification for each website that it offers