Reddit staff used SMS for two-factor authentication and got hacked

Newsfeed

MyBroadband Newsfeed
Staff member
Joined
Jun 28, 2017
Messages
6,767
Reddit staff used SMS for two-factor authentication and got hacked

Reddit has disclosed that “a few” of its employees’ accounts at its cloud and source code hosting providers were recently compromised, and that the attackers gained access to a significant amount of user data.

Between 14 and 18 June 2018, the attackers gained access to all Reddit data from 2007 and before, including account credentials and email addresses.
 

supersunbird

Honorary Master
Joined
Oct 1, 2005
Messages
52,092
“Already having our primary access points for code and infrastructure behind strong authentication requiring two factor authentication, we learned that SMS-based authentication is not nearly as secure as we would hope,” said Reddit.

“We point this out to encourage everyone here to move to token-based 2FA.”
Capitecs been having it.
 
Top