Do you use 2 step verification?Is it proven to work?
>>57041137
Fuck yes. For online banking especially.
>>57041161
>>57041149
Just curious why you think that?
>>57041137
Does Firefox support U2F yet?
>>57041137
What does it mean
>proven to work?
It does what it says it does? Yes. Is it more secure? Yes. Is it absolutely unbeatable and the thing to end all hacking? No.
>>57041137
I use 2 factor auth on my recovery email account that exists solely to recover my main email accounts and I haven't used it anywhere on the Internet.
My main two emails I just have strong passwords and notifications when someone logs in.
It basically means that if my known email accounts get broken into I can't get locked out of them, without the added hassle of having to deal with 2 factor auth all the time.
>>57041137
I can call your cellphone company, pretend that I am you, and they will give me your sim.
https://www.youtube.com/watch?v=caVEiitI2vg
>>57041823
Only if you know who I am and my cellphone company knows who I am.
>>57041856
they were hacking big youtubers left and right with this method, dude.
I recently activated 2 step verification on my EA account because I received some weird emails in russian from EA. Apparantly the "hacker" was not happy.
>>57041870
>big youtubers
Do you even hear yourself speak sometimes?
>>57041137
It's stopped me from finding people's identities a few times.
Gay as shit, dude.
Yeah, TOTP though, not via text.
>>57041870
Aka, people who made themselves known on the Internet.
>>570411372
2 factor (not just "2 step") authentication is useful. FIDO U2F / TOTP recommended.
Codes sent to your phone by SMS are not secure enough to be a second factor and should not be used by anyone. Actually, they decrease security - NIST expressly warn against it, because phone numbers are very easy to hijack via SS7 and social engineering. Unless your passwords suck, it's easier to get yoir phone number than your email account, so that's no help at all.
>>57041137
Yes, I didn't think I needed it because I have strong passwords but two of my accounts have been accessed already.
Changing the passwords only delayed it for some months and they were accessed again.
After getting the two step they are still attempted to be accessed but barred straight away, after some attempts failed due the two form factor, I finally stopped getting those unauthorized access warnings.