Hacker News with Generative AI: Two-Factor Authentication

Bitwarden is turning 2FA on by default for new devices (bitwarden.com)
To keep your account safe and secure, in February 2025, Bitwarden will require additional verification for users who do not use two-step login.

Security, Two-Factor Authentication, Password Management, Online Security

225 points by coldblues 24 days ago | 254 comments

Yubico Issues Security Advisory as 2FA Bypass Vulnerability Confirmed (forbes.com)
Two-factor authentication has increasingly become a security essential over recent years, so when news of anything that can bypass those 2FA protections breaks, it’s not something you can ignore.

Security, Two-Factor Authentication, Cybersecurity, Vulnerability

10 points by Fishkins 34 days ago | 0 comments

Why does storing 2FA codes in your password manager make sense? (andygrunwald.com)
Why does storing two-factor authentication codes in your password manager make sense?

Cybersecurity, Password Management, Two-Factor Authentication

107 points by andygrunwald 51 days ago | 143 comments

Tell HN: 2FA code for Google account gone after Google Authenticator update (ycombinator.com)
After recent update, where Google added accounts support to yet another of their apps, I am no longer getting 2FA code for my Google Account. Only dashes are displayed and clicking on it shows very terse error message: "Could not generate code for this account. Try removing it from Authenticator and setting it up...". Of course I opted out of using account in Authenticator, as my phone is connected to different Google account.

Two-Factor Authentication, Google, Security, Mobile Apps

28 points by butz 58 days ago | 9 comments

CISA: Do not use SMS as a second factor for authentication [pdf] (cisa.gov)

Cybersecurity, Authentication, Two-Factor Authentication

42 points by zdw 63 days ago | 22 comments

Tell HN: China has all your SMS 2FA (ycombinator.com)
It occurred to me as I was trying to log into a financial website that the default 2FA method was still SMS.

Cybersecurity, Two-Factor Authentication, China

12 points by 0xbadcafebee 79 days ago | 0 comments

Ask HN: AWS registering MFA will be required in 29 days (ycombinator.com)
When signing into our AWS console this morning we noticed this security popup - "Registering MFA will be required in 29 days".

Security, AWS, Cloud Computing, Two-Factor Authentication

7 points by herodoturtle 133 days ago | 15 comments

Tell HN: Twilio quietly removes Authy iOS app from Mac App Store, stops updates (ycombinator.com)
Authy, a software application that provides two-factor authentication codes for logging into online accounts, previously discontinued its desktop app for MacOS and Windows in March 2024.

Security, Software, Mobile Apps, Two-Factor Authentication

11 points by jyunwai 162 days ago | 5 comments

Tell HN: GitHub locked me out for not using 2FA (ycombinator.com)

Security, GitHub, Two-Factor Authentication

16 points by GoblinSlayer 171 days ago | 67 comments

Tell HN: You can add a 2FA account to multiple authenticator apps (ycombinator.com)

Two-Factor Authentication, Security, Mobile Apps

6 points by keepamovin 175 days ago | 12 comments

Never enable 2FA for accounts that you actually care about (2023) (benwilber.github.io)

Security, Two-Factor Authentication, Cybersecurity

10 points by benwilber0 184 days ago | 58 comments

The Sad State of Two-Factor Authentication in U.S. Banking (2020) (medium.com)