A security breach exposed two-factor authentication (2FA) codes/password reset links for millions of users on platforms like Facebook, Google, and TikTok.

Key Points:

  • YX International, an SMS routing company, left an internal database exposed online without a password.
  • The database contained one-time 2FA codes and password reset links for various tech giants.
  • YX International secured the database and claims to have “sealed the vulnerability.”
  • The company wouldn’t confirm how long the database was exposed or if anyone else accessed it.
  • Representatives from Meta, Google, and TikTok haven’t commented yet.

Concerns:

  • This leak highlights the vulnerabilities of SMS-based 2FA compared to app-based methods.
  • The lack of information regarding the leak’s duration and potential access by others raises concerns.

Gemini Recommendations:

  • Consider switching to app-based 2FA for increased security.
  • Be cautious of suspicious communications and avoid clicking unknown links.
  • Stay informed about potential security breaches affecting your online accounts.
    • Passerby6497@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      arrow-down
      1
      ·
      10 months ago

      Not really, just tired of seeing ignorant comments posted by unhinged idiots who don’t know what they’re talking about in regards to a field I’m rather knowledgeable in.

      In the end, I don’t care what you think because you’re wrong and very obviously uninformed, and just lashing out at people smarter than you who aren’t willing to spoon-feed you information you could easily Google based on, again, a comment that was explicitly anecdotal.

      If you had put forth even a modicum of your own effort instead of acting unhinged, you would have seen that this is a common complaint about financial institutions. But keep going off on uneducated and uninformed rants, makes you look suuuuuuuper smart.