- LittleBigPlanet Kratos / 007 Quantum of Solace Code Contest
- Is the GPhone a Trolltech Greenphone or Neo1973? [updated]
- EVE Cheaters Lead Gilded Lives
- Mobile: Opera Mini
- PSPWorld's Top 10 Shows Platform Weakness
- EA Lets You Try, Try Again Installing Spore
- AdhocParty Expands To Over 100 Titles
- Home Muzzled, GTA4 Still Great
- zOMG! It's Totally A Flash MMO!
- Save Room At The Table For Killzone 2
Two-factor authentication is no silver bullet.
Fri, 2006-07-14 12:52 — PMunn
The recent push by the government to require two-factor authentication on laptops has made the computing world sit up and take notice. It's also probably boosted two-factor authentication method vendors fortunes a bit, but if it works, why not?
Phishers aren't stupid, and a snazzy new phishing site broke Citibank's two-factor authentication by actually executing a man-in-the-middle attack. By sitting between the user and Citibank's site, they were able to get the token ID that lasts only a minute at a time and execute transfers behind the scenes within the minute.
http://it.slashdot.org/article.pl?sid=06/07/11/0337213&from=rss
Post new comment