All of the advice in this article is sound, but to be honest and in my humble opinion, the most valuable point made here or in general concerning social media and security is the absolute need for two-factor / multi-factor authentication. This must become a component of everything we do online.
This is an interesting read into the why’s and why not’s of multi-factor authentication usage. Enjoy.
The explanation of the compromises is fairly straightforward and in no way unexpected. The advice at the end of the article is just as straightforward and very sound. Two-factor authentication and end user awareness and education can resolve many of these problems.
This is a somewhat chilling story. I certainly agree that Authenticator is a stronger solution, especially for those people more apt to be targeted.
This is an intriguing draft document by NIST concerning SMS and two-factor authentication. This is a commonly used technique for many two-factor providers so conversion to more secure methods may take time. This is certainly not a finalized recommendation and adoption will take time if it moves forward.
This is yet another good reason to move forward and implement two-factor authentication. Kudos to Google.
I mentioned this yesterday and many other times in the past, but I will mention it again, if you are having to go through the process of resetting your password due to this breach, go ahead and take the time to set up two-factor authentication. It is simple, easy, and can prevent a breach in the event of lost or compromised credentials.
In response to this article, I will simply say “Agreed”. Password managers and two-factor authentication are the best options available to combat credential theft and reuse.
In light of the recent scare around Google, Yahoo, and Microsoft credentials, I believe this article from the team at SANS Securing the Human is good content and definitely worth a share. Enjoy!
This article is a great reminder of the value of two-factor authentication and is well worth a read.