Skip to content
- The Uber Hack Shows Push Notification 2FA Has a Downside: It’s Too Annoying
- Heroku admits that customer credentials were stolen in cyberattack
- Heroku Status Incident – 2413
- Heroku April 2022 Incident
- An Empirical Study of Wireless Carrier Authentication for SIM Swaps
- EVE Online Get’s 2FA
- Hashing Algorithms
- USENIX Conference – Anatomy of Account Takeover – Grzegorz Milka
- An introduction to information theory and entropy
- Password Checker
- OWASP Guide to Cryptography
- SS7 Vulnerability
- Why do most people ignore 2FA?
- Vice.com Security Researchers Find Several Bugs in Nest Security Cameras
- NBC local news Stranger spews racial slurs over family’s hacked Ring camera
- Vice.com How Hackers Are Breaking Into Ring Cameras
- IOVATION. “Two Factor Authentication (2FA)”
- “Two-factor authentication: What you need to know (FAQ) – CNET”. CNET
- Seema, Sharma, (2005). Location Based Authentication (Thesis). University of New Orleans.
- Google’s “Authentication at Scale” article written for IEEE S&P:
- OWASP
- Techcrunch, NIST Declares the Age of SMS Based 2FA Over
- KrebsOnSecurity.com, Reddit Breach Highlights
- Reddit.com, We had a Security Incident
- Wired.com, Hey Stop using Texts
- Motherboard.vice.com, Lorenzo Franceschi-Bicchierai, The SIM Hackers
- Motherboard.vice.com, Joseph Cox, We were Warned about Flaws in the Mobile Data Backbone
- Anonymous Two-Factor Authentication in Distributed Systems Ding Wang Student Member, IEEE, Debiao He, Ping Wang, Chao-Hsien Chu Senior Member, IEEE
- Over A Dozen Services Supporting FIDO U2F
- Make your own U2F key
- Yubico U2F
- Password Storage Cheat Sheet
- Reddit Hack Exposes 2FA Weakness
- U2F Explained
- Facebook stored passwords in the clear