Security news that informs and inspires

Archive

27 results for tag 2fa:

Yubico Warns of OTP-Replay Issue In Validation Server

The Yubico Validation Server contains a pair of vulnerabilities, one of which allows the replay of one-time passwords.

2fa

Review Finds Downgrade Attack in Solokey Firmware

A review of the SoloKey firmware found a serious downgrade attack flaw, which an attacker could use to install an older, vulnerable version. The bug has been fixed.

2fa

OpenSSH Adds Support for U2F Hardware Keys

OpenSSH has added support for hardware security keys that implement the U2F standard.

2fa

Make It Harder to Phish One-Time Passcodes Sent Over SMS

A proposal that would standardize the format of SMS messages being used in two-factor authentication schemes has a simple goal: make users relying on those one-time passcodes less susceptible to phishing attacks.

Sms, Sms 2fa, 2 Factor Authentication, 2fa, Browser Security, Phishing

Mozilla to Require 2FA for Add-On Developers

Mozilla will soon require add-on developers to enable 2FA for their accounts in an effort to defeat supply chain attacks.

2fa, Mozilla