#securitykeys — Public Fediverse posts

Actually, you just significantly reduced my security, Gandi. You should have let the users manage this transition, or at least warn them ahead of time what was going to happen if they didn't.

Replacing unphishable auth (old school U2F is still quite functional!) with phishable auth (email) without user consent is not acceptable.

#Gandi #SecurityKeys #U2F

Actually, you just significantly reduced my security, Gandi. You should have let the users manage this transition, or at least warn them ahead of time what was going to happen if they didn't.

Replacing unphishable auth (old school U2F is still quite functional!) with phishable auth (email) without user consent is not acceptable.

#Gandi #SecurityKeys #U2F

Actually, you just significantly reduced my security, Gandi. You should have let the users manage this transition, or at least warn them ahead of time what was going to happen if they didn't.

Replacing unphishable auth (old school U2F is still quite functional!) with phishable auth (email) without user consent is not acceptable.

#Gandi #SecurityKeys #U2F

Actually, you just significantly reduced my security, Gandi. You should have let the users manage this transition, or at least warn them ahead of time what was going to happen if they didn't.

Replacing unphishable auth (old school U2F is still quite functional!) with phishable auth (email) without user consent is not acceptable.

#Gandi #SecurityKeys #U2F

Actually, you just significantly reduced my security, Gandi. You should have let the users manage this transition, or at least warn them ahead of time what was going to happen if they didn't.

Replacing unphishable auth (old school U2F is still quite functional!) with phishable auth (email) without user consent is not acceptable.

#Gandi #SecurityKeys #U2F

https://www.forbes.com/sites/daveywinder/2024/12/05/gmail-takeover-hack-attack-google-warns-you-have-just-7-days-to-act/?utm_source=flipboard&utm_content=forbes%2Fmagazine%2FInnovation #cybersecurity #Gmail #lockout #passkeys #securitykeys

🔐 Unlocking the World of Cryptography: DH and ECDHE Keys Explained in our latest article. Stay tuned for insights into OpenSSL configurations, minimum protocol requirements, and strategies to enhance backend security. 🔍💻

#Cryptography #SecurityProtocols #DHKey #ECDHEKey #SSL #TLS #VPN #CyberSecurity #Encryption #TechInsights #RELIANOID #LoadBalancer #DigitalSecurity #TechTroubleshooting #CryptographyExplained #SecurityKeys #DHKeyExchange #ECDHEKey #SSLProtocol #TLSConnection #VPNSecurity

Recently added quite a few finger-sized gadgets!
- Kingston DataTraveler Exodia 64GB
- Orico USB-C female to USB-A male
- PortaPow Data Blocker Pure - Prevents juice jacking
- Sandisk Ultra Luxe 64GB
- Kingston Ironkey Locker+ 50 32GB
- Yubico Security Key USB C NFC

Really happy with the performance of each product so far.

#usbflashdrive #KingstonIronkeyLocker50 #IronKey #yubico #yubikeys #Orico #portapow #juicejacking #sandisk #flashdrives #securitykeys #datablocker #usbcondom #newtoys

So apparently, according to Yubico's CS, they accidentally placed a "normal", no-barcode Security Key into an "Enterprise Edition" packaging and told me not worry about it. They advised me to reset the key with ykman if I was still worried.

#yubikey #yubikeys #yubico #OnlineSecurity #CyberSecurity #hardwarekey #securitykeys #fido2

For decades, users have authenticated on systems with usernames and passwords. This method of authentication has not changed since the beginning of the Internet. As the Internet became a more hostile place and threats emerged, ...

https://blog.tinned-software.net/secure-authentication-and-how-it-changed-over-time/

#security #securitykey #securitykeys #fido #fido2 #totp #passkey

Hackers Claim They Breached T-Mobile More Than 100 Times in 2022

https://krebsonsecurity.com/2023/02/hackers-claim-they-breached-t-mobile-more-than-100-times-in-2022/

#InternationalComputerScienceInstitute #ALittleSunshine #NicholasWeaver #DataBreaches #AllisonNixon #SecurityKeys #SIMSwapping #WebFraud2.0 #SIMswapping #Minecraft #T-Mobile #Unit221B #Roblox #tmoup

Hackers Claim They Breached T-Mobile More Than 100 Times in 2022 https://krebsonsecurity.com/2023/02/hackers-claim-they-breached-t-mobile-more-than-100-times-in-2022/ #InternationalComputerScienceInstitute #ALittleSunshine #NicholasWeaver #DataBreaches #AllisonNixon #SecurityKeys #SIMSwapping #WebFraud2.0 #SIMswapping #Minecraft #T-Mobile #Unit221B #Roblox #tmoup

Hackers Claim They Breached T-Mobile More Than 100 Times in 2022 https://krebsonsecurity.com/2023/02/hackers-claim-they-breached-t-mobile-more-than-100-times-in-2022/ #InternationalComputerScienceInstitute #ALittleSunshine #NicholasWeaver #DataBreaches #AllisonNixon #SecurityKeys #SIMSwapping #WebFraud2.0 #SIMswapping #Minecraft #T-Mobile #Unit221B #Roblox #tmoup

Hackers Claim They Breached T-Mobile More Than 100 Times in 2022 https://krebsonsecurity.com/2023/02/hackers-claim-they-breached-t-mobile-more-than-100-times-in-2022/ #InternationalComputerScienceInstitute #ALittleSunshine #NicholasWeaver #DataBreaches #AllisonNixon #SecurityKeys #SIMSwapping #WebFraud2.0 #SIMswapping #Minecraft #T-Mobile #Unit221B #Roblox #tmoup

Hackers Claim They Breached T-Mobile More Than 100 Times in 2022 https://krebsonsecurity.com/2023/02/hackers-claim-they-breached-t-mobile-more-than-100-times-in-2022/ #InternationalComputerScienceInstitute #ALittleSunshine #NicholasWeaver #DataBreaches #AllisonNixon #SecurityKeys #SIMSwapping #WebFraud2.0 #SIMswapping #Minecraft #T-Mobile #Unit221B #Roblox #tmoup

Hackers Claim They Breached T-Mobile More Than 100 Times in 2022 https://krebsonsecurity.com/2023/02/hackers-claim-they-breached-t-mobile-more-than-100-times-in-2022/ #InternationalComputerScienceInstitute #ALittleSunshine #NicholasWeaver #DataBreaches #AllisonNixon #SecurityKeys #SIMSwapping #WebFraud2.0 #SIMswapping #Minecraft #T-Mobile #Unit221B #Roblox #tmoup

Hackers Claim They Breached T-Mobile More Than 100 Times in 2022

https://krebsonsecurity.com/2023/02/hackers-claim-they-breached-t-mobile-more-than-100-times-in-2022/

#InternationalComputerScienceInstitute #ALittleSunshine #NicholasWeaver #DataBreaches #AllisonNixon #SecurityKeys #SIMSwapping #SIMswapping #WebFraud20 #Minecraft #Unit221B #TMobile #Roblox #tmoup

Hackers Claim They Breached T-Mobile More Than 100 Times in 2022

https://krebsonsecurity.com/2023/02/hackers-claim-they-breached-t-mobile-more-than-100-times-in-2022/

#InternationalComputerScienceInstitute #ALittleSunshine #NicholasWeaver #DataBreaches #AllisonNixon #SecurityKeys #SIMSwapping #SIMswapping #WebFraud20 #Minecraft #Unit221B #TMobile #Roblox #tmoup

Hackers Claim They Breached T-Mobile More Than 100 Times in 2022

https://krebsonsecurity.com/2023/02/hackers-claim-they-breached-t-mobile-more-than-100-times-in-2022/

#InternationalComputerScienceInstitute #ALittleSunshine #NicholasWeaver #DataBreaches #AllisonNixon #SecurityKeys #SIMSwapping #SIMswapping #WebFraud20 #Minecraft #Unit221B #TMobile #Roblox #tmoup

Hackers Claim They Breached T-Mobile More Than 100 Times in 2022

https://krebsonsecurity.com/2023/02/hackers-claim-they-breached-t-mobile-more-than-100-times-in-2022/

#InternationalComputerScienceInstitute #ALittleSunshine #NicholasWeaver #DataBreaches #AllisonNixon #SecurityKeys #SIMSwapping #SIMswapping #WebFraud20 #Minecraft #Unit221B #TMobile #Roblox #tmoup

Hackers Claim They Breached T-Mobile More Than 100 Times in 2022

https://krebsonsecurity.com/2023/02/hackers-claim-they-breached-t-mobile-more-than-100-times-in-2022/

#InternationalComputerScienceInstitute #ALittleSunshine #NicholasWeaver #DataBreaches #AllisonNixon #SecurityKeys #SIMSwapping #SIMswapping #WebFraud20 #Minecraft #Unit221B #TMobile #Roblox #tmoup

Hackers Claim They Breached T-Mobile More Than 100 Times in 2022

https://krebsonsecurity.com/2023/02/hackers-claim-they-breached-t-mobile-more-than-100-times-in-2022/

#InternationalComputerScienceInstitute #ALittleSunshine #NicholasWeaver #DataBreaches #AllisonNixon #SecurityKeys #SIMSwapping #SIMswapping #WebFraud20 #Minecraft #Unit221B #TMobile #Roblox #tmoup

@me

After having many different security key vendors and form factors, I think you may have a variety of keys for different use case. Some keys for dev/test, some for production, some for 3rd party services and may use them differently. Daily driver vs infrequent access.

I've been a big fan of the Feitian BioPass line. Thier biometric keys are great for everyday use https://shop.ftsafe.us/collections/biopass-fido2-series

The AuthenTrend ATKey.Pro has a really small form factor biometric which you can leave plugged in on a laptop if you want. https://authentrend.com/atkey-pro/

But thing is with these keys, you need to be mindful of where you want to use it. Have a device that only has a lightning connector? Better make sure you get a compatible key.

Also be aware of Bluetooth and NFC limitations on devices and OSes.

I would stick to USB-C keys these days, and while you might need a dongle for USB-A systems I think those will become less and less.

I hope as more we see more device support for passkeys I think this will grow into the predominant usage, but there will still be the need/desire for single device keys.

https://passkeys.dev/device-support/

#securitykeys #fido2 #yubikey #passkey #feitian #authentrend #passwordless