Hackers have found ways to avoid double-factor verification
Websites that until yesterday simply required a password already require complex passwords and additional security options such as two-factor verification systems.
Two-factor verification (2FA) is one of the most important steps in terms of increasing online security where full-fledged users can access online services such as Facebook, Twitter or Gmail with maximum security.
Websites that until yesterday simply required a password already require complex passwords and additional security options such as two-factor verification systems.
Yet even the latter is not without blemish. A new report by Amnesty International details how hackers have grown to manipulate these systems as well.
These systems usually require setting a code that is sent by SMS when you fill in your username and password to log in.
The option is designed as the latest hijack barrier barrier, even if they break the security of a website and steal passwords.
If hackers have duplicate two-factor authentication codes, then the system is overrun.
Amnesty International says hackers are beginning to use automated systems and phishing sites to get you two-factor verification codes.
First they steal their passwords with a phishing page, then set their password in Gmail by enabling 2FA and then enticing users to place the 2FA code on the phishing page.
Something like that started to apply with Gmail and when hackers enter your account, it does not hinder anything from disabling the security measure.
During 2017-2018 hackers targeted over 1,000 accounts in Google and Yahoo in the Middle East and North Africa.
While the news is discouraging, we recommend that you use the two-factor verification for each website that it offers
Recent Comments
6
Oh no. We have to be extra careful. There was a time I nearly gave them my back detail from one of those online money making. Thank you for sharing, Bajram! :o)
shucks ... darn it ...
All these hacking makes me not want to readily share my info with too many sites; including the affiliate programs. I just want them to have my paypal address and that's it. I don't wanna give them my full name, my home address, my phone number ... it's just all too much given how readily hackers skill up on circumventing online security platforms.
Thank you for this warning :( I appreciate it.
Greetings to you
I should not be afraid
when you're always up with the update
if there is a bug on your website
or in your service
something can happen that otherwise
I do not believe why I'm afraid
we are a small skunk scheme in the top as much
thank you for your comment
See more comments
How do you set up two factor authentication within WA?
It's not available here in the WA, but Carson has mentioned they are working on having it and will announce when it's available.
In the mean time make sure your password is at least 10 characters long with a combination of upper and lower case letters, numbers and symbols.
A password like that is near impossible to hack.
here in WA there is no such service but on this website you are sure of everything