All sounds great until you lose your phone or FIDO device, or it’s stolen, or your facial login is spoofed but still probably pretty great on the whole when combined with other methods.
All sounds great until you lose your phone or FIDO device, or it’s stolen, or your facial login is spoofed but still probably pretty great on the whole when combined with other methods.
Aye thank you for the info on the lacking end to end encryption at Google Authenticator - I didn’t realize that. Big weak point there in the system.
No problem! And ya for how big a company they are this seems like a pretty big thing to be dropping the ball on and with Google making the zip and mov domains I feel like they must be trolling people or something trying to create more problems in the cybersecurity world but that’s up for debate also I guess.
Edit: added link to Medium write up from researcher Bobbyr.
https://medium.com/@bobbyrsec/the-dangers-of-googles-zip-tld-5e1e675e59a5
Thanks for the info about the .zip domain. Totally missed that.