Security Alerts & News
by Tymoteusz A. Góral

History
#2231 Microsoft turns 2FA into one-factor by ditching password
Microsoft Authenticator is a pleasant enough two-factor authentication app. You can use it to generate numeric authentication codes for accounts on Google, Facebook, Twitter, and indeed, any other service that uses a standard one-time password. The login process is straightforward: first you sign in to each site with your username and regular, fixed password, then you use the code generated by the app.

But for Microsoft accounts, Redmond is offering something new: getting rid of that first password and using just the phone to authenticate. With phone-based authentication enabled, after entering your Microsoft Account e-mail address, you'll receive an alert on your phone. From that alert, you can either approve or reject the authentication attempt—no password necessary.
Read more
#2239 BrickerBot author claims he bricked two million devices
#2238 Beware! Dozens of Linksys WiFi router models vulnerable to multiple flaws
#2237 Location tracking Android spyware found in Google Play store
#2236 Windows bug used to spread Stuxnet remains world’s most exploited
#2235 Credit card with a fingerprint sensor revealed by Mastercard
#2234 Researchers find commercial banking apps contain swarms of open-source bugs
#2233 Report: Cybercriminals prefer Skype, Jabber and ICQ
#2232 New open source RAT uses Telegram protocol to steal data from victims
#2231 Microsoft turns 2FA into one-factor by ditching password
#2230 Hajime worm battles Mirai for control of the IoT
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12