GBN: Facebook and the Derpness of Enabling Their 2FA

By Ben Tomhave on January 14, 2015 8:44 AM

From December 2014...

I was awoken around 5am post-Thanksgiving Saturday by multiple text messages from Facebook instructing me to click a link and enter a code to reset my password. It seems someone decided to try and takeover my account. This led me to conclude that now would be a good time to quit putting-off enabling 2-factor authentication (2FA) for my account. What should have been a very simple process was complicated (slightly) by a degree of true derpitude: in order to enable 2FA for my account, Facebook first insisted that I change my browser configuration (or use a different browser) that wasn't set to clear cookies after each session.

Continue reading here...

Categories:

Search

About this Entry

This page contains a single entry by Ben Tomhave published on January 14, 2015 8:44 AM.

GBN: Recent GTP Security Research was the previous entry in this blog.

GBN: Sonys and Targets and Heartbleeds! Oh My! is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.

Categories

Monthly Archives

Pages

  • about
Powered by Movable Type 6.3.7