Google Authenticator users who store their one-time codes as a backup in their Google account should note that this does not use end-to-end encryption, meaning Google has access to this information. This week Google announced a new feature for the Google Authenticator. A 2FA code generation application that allows users to log into an account. […]
Recent SMS phishing attacks company employees show how easy it is to set up a site that looks like the company’s IAM landing page (f.e. Okta) which asks for a user credentails and a one time passcode for access. This would result in gaining the users’ credententials which would be send to the attacker in […]