Security News > 2016 > April > Google’s poor design decision undermines 2FA protection (Help Net Security)
2016-04-11 18:44
A design decision by Google can be exploited by attackers to gain control of both devices needed to access users’ accounts protected via SMS-based 2-factor authentication. This feature, which is considered a security flaw by the three researchers from VU University Amsterdam who discovered the potential problem, has still not been changed by Google, even though they have been notified of it in 2014. The researchers dubbed the vulnerability BAndroid (Browser-to-Android). “If attackers have control … More →
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/T58nNk_AFSY/
Related news
- Google Chrome's AI-powered security feature rolls out to everyone (source)
- Google's March 2025 Android Security Update Fixes Two Actively Exploited Vulnerabilities (source)
- Why The Modern Google Workspace Needs Unified Security (source)
- Google paid $12 million in bug bounties last year to security researchers (source)
- Google Acquires Wiz for $32 Billion in Its Biggest Deal Ever to Boost Cloud Security (source)
- Google to purchase Wiz for $32 billion in cloud security play (source)
- Google's got a hot cloud security startup, a new unified platform — and its eye on Microsoft's $20B+ security biz (source)