this post was submitted on 17 May 2025
465 points (95.1% liked)

Technology Memes

364 readers
1 users here now

Welcome to Technology Memes. Here you can make memes and/or rant about technology, internet, computers, corporations, enshittification and etc.

Rules:

  1. Stay on-topic.
  2. Don't attack and harras anyone. Be nice.
  3. No racism and discrimination.
  4. No politics unless they're related to tech.
  5. No spam, no ads.
  6. No NSFW.
  7. Don't repost.

Please report any posts and comments that violate these rules.

Related communities:

founded 6 months ago
MODERATORS
trespasser69@lemmy.world
465
MFA grind (infosec.pub)
submitted 6 days ago by thatradomguy@lemmy.world to c/tech_memes@lemmy.world
62 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] Duamerthrax@lemmy.world 1 points 4 days ago (4 children)

I just use strong, unique passwords and be mindful when something is asking for my logins.

[–] BassTurd@lemmy.world 1 points 4 days ago (3 children)

That should be the bare minimum for everyone, but it doesn't protect anything if a password is compromised, especially something like email that can lead to getting other passwords.

[–] Duamerthrax@lemmy.world 1 points 4 days ago (2 children)

If your email is compromised, isn't 2FA also compromised?

[–] BassTurd@lemmy.world 2 points 4 days ago (1 children)

I suppose in some cases, yea. I was thinking about authenticator apps as MFA and forgot about email. Ideally, all MFA would be through a separate authenticator. For stronger security, something like a ubikey or other hardware security device can be used.

[–] Duamerthrax@lemmy.world 1 points 4 days ago

I don't even think I use websites that would use that. The only "app" like that is google using my phone for new logins. Every other 2fa uses my email. If it's not a google service, I'd prefer not to have to use an app because I treat my whole phone as insecure.