Post · bonfire.cafe

So, the ICE/Paragon zero click attack can be sent via sms to any phone. No need to open it, just having it arrive on the device is all it takes. Correct? How long before it's leaked into the wild if it's not already?

I'd like to turn off sms entirely but what about companies that use that for 2FA? For example, PayPal requires you have their invasive app installed or that you use sms for 2FA.

Seems like a gaping security risk or am I missing something?

#Security #Privacy #Computing

DreamGryphon

@DreamGryphon@veganism.social replied · 2 weeks ago

@dennyhenke

Only thing I can think of is getting a cheap phone just for 2FA. :/

COD

@chrisod@social.lol replied · 2 weeks ago

@dennyhenke I don't know if it's better, but Paypal will do 2FA via an authenticator app.

bonfire.cafe

A space for Bonfire maintainers and contributors to communicate

bonfire.cafe: About · Code of conduct · Privacy · Users · Instances

Bonfire social · 1.0.0-rc.2.21 no JS en

Automatic federation enabled