Two-Step Login: Not Always as Safe as You'd Think

Two-step login is a mechanism whereby the user needs to present two pieces of information in order to log into a service. Best practice dictates that these two pieces of information represent "something you know" and "something you have." Lately, companies have been using codes sent via text message as "something you have," but this mechanism is not nearly as secure as one might think. Better solutions to exist and should be used.

Read More