Security News > 2016 > April > Google’s poor design decision undermines 2FA protection (Help Net Security)

A design decision by Google can be exploited by attackers to gain control of both devices needed to access users’ accounts protected via SMS-based 2-factor authentication. This feature, which is considered a security flaw by the three researchers from VU University Amsterdam who discovered the potential problem, has still not been changed by Google, even though they have been notified of it in 2014. The researchers dubbed the vulnerability BAndroid (Browser-to-Android). “If attackers have control … More →

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/T58nNk_AFSY/