Posts Tagged ‘Two-step authorization’

Twitter hackedImmediately after the two-step authentication on the Twitter site specialists noticed a strange procedure to activate it.

Enough to provide a phone number on the site – and click “OK”. That is not even necessary to enter the code, which came on the phone to confirm the correctness of the introduction of the telephone number. The same procedure applies when removing services.

Sean Sullivan of F-Secure has published an article describing the two-step authentication Twitter vulnerabilities and possible attack scenarios. (more…)