chris@l.roofo.cc to Programmer Humor@programming.devEnglish · 6 个月前Multifactor auth done rightl.roofo.ccimagemessage-square21fedilinkarrow-up1473arrow-down15file-text
arrow-up1468arrow-down1imageMultifactor auth done rightl.roofo.ccchris@l.roofo.cc to Programmer Humor@programming.devEnglish · 6 个月前message-square21fedilinkfile-text
minus-squareJPAKx4@lemmy.blahaj.zonelinkfedilinkarrow-up43arrow-down1·6 个月前SMS is something you have, IE access to your phone. Doesn’t mean it’s the best option, SMS is notorious for being insecure
minus-squareHeckGazer@programming.devlinkfedilinkarrow-up5·6 个月前The 10,000 support staff with dubious social engineering training at your service provider are not “something you have”. Case in point literally a few weeks ago https://arstechnica.com/tech-policy/2023/12/verizon-fell-for-fake-search-warrant-gave-victims-phone-data-to-stalker/
minus-squareKethal@lemmy.worldlinkfedilinkarrow-up1·edit-26 个月前This is an article describing someone impersonating an officer and submitting a fake warrant. It’s incredible that Verizon fell for it, but what does it have to do with SMS?
minus-squareAVincentInSpace@pawb.sociallinkfedilinkEnglisharrow-up1·6 个月前It means that if I want access to something that has been texted to you, I don’t exactly need to be a government in order to get it.
SMS is something you have, IE access to your phone. Doesn’t mean it’s the best option, SMS is notorious for being insecure
The 10,000 support staff with dubious social engineering training at your service provider are not “something you have”. Case in point literally a few weeks ago https://arstechnica.com/tech-policy/2023/12/verizon-fell-for-fake-search-warrant-gave-victims-phone-data-to-stalker/
This is an article describing someone impersonating an officer and submitting a fake warrant. It’s incredible that Verizon fell for it, but what does it have to do with SMS?
It means that if I want access to something that has been texted to you, I don’t exactly need to be a government in order to get it.
deleted by creator