51°F

Aaron Parecki

  • Articles
  • Notes
  • Photos

#MFA

  • Aaron Parecki
    I'm a big fan of using more secure two-factor authentication methods like a security key or TouchID, but I will admit I never expected charging people to use SMS would be a viable strategy to get them off it 😅 https://blog.twitter.com/en_us/topics/product/2023/an-update-on-two-factor-authentication-using-sms-on-twitter
    Portland, Oregon, USA • 43°F
    46 likes 6 reposts 12 replies
    Fri, Feb 17, 2023 9:26pm -08:00 #security #2fa #mfa #twitter
  • Enabling MFA and SSO for IoT and Constrained Devices
    May
    13
    May 13, 2022 11:50am - 12:10pm (+0200)
    bcc Berlin Congress Center GmbH
    Berlin, Berlin, DE
    EIC 2022
    permalink #oauth #mfa #sso
  • Aaron Parecki
    There's nothing like being at #EIC2022, a conference all about identity and security, where phishing and hacking have been a major theme across all the talks, and then getting a "is this you?" push on my phone from an IP on a sketchy VPN followed by a password reset email
    Berlin, Berlin • 60°F
    24 likes 3 reposts 5 replies
    Thu, May 12, 2022 10:10am +02:00 #security #eic #mfa #eic2022
  • Why Is the Majority of Our MFA So Phishable? | LinkedIn (www.linkedin.com)
    Sun, Nov 7, 2021 12:53pm +01:00 #mfa #security #oauth
  • Phishing Campaign Targets YouTube Creators With Cookie Stealing Malware To Hijack Accounts And Stream Cryptocurrency Scams - CPO Magazine (www.cpomagazine.com)
    "The hackers also used the “pass-the-cookie attack” to compromise YouTube accounts and take control. Google says that although the method has been around for decades, it has recently skyrocketed because of the adoption of multi-factor authentication (MFA)."
    Sat, Nov 6, 2021 8:14pm +01:00 #youtube #google #hacking #security #mfa #2fa
  • Nishant Kaushik https://twitter.com/NishantK
    The headline is *extremely* unfortunate, since it could confuse users into avoiding #MFA mechanisms that @Alex_T_Weinert is actually advocating for, like push-based authn and authenticator apps, not to mention #FIDO, that rely on "phones".

    https://www.zdnet.com/article/microsoft-urges-users-to-stop-using-phone-based-multi-factor-authentication/
    Portland, Oregon • 49°F
    Fri, Dec 18, 2020 2:36pm +00:00 (liked on Sat, Dec 19, 2020 7:29am -08:00) #MFA #FIDO
  • Aaron Parecki
    The confusing part about online security is knowing *when* it's safe to give your SMS two-factor auth codes to a third party.
    Portland, Oregon • 39°F
    4 likes 9 replies
    Mon, Jan 13, 2020 2:53pm -08:00 #security #mfa
  • willman duffy https://twitter.com/willmanduffy
    0 factor auth
    Portland, Oregon • 52°F
    Thu, Dec 13, 2018 3:45pm +00:00 (liked on Mon, Dec 17, 2018 2:59pm -08:00) #security #auth #mfa
older

Hi, I'm Aaron Parecki, Director of Identity Standards at Okta, and co-founder of IndieWebCamp. I maintain oauth.net, write and consult about OAuth, and participate in the OAuth Working Group at the IETF. I also help people learn about video production and livestreaming. (detailed bio)

I've been tracking my location since 2008 and I wrote 100 songs in 100 days. I've spoken at conferences around the world about owning your data, OAuth, quantified self, and explained why R is a vowel. Read more.

  • Director of Identity Standards at Okta
  • IndieWebCamp Founder
  • OAuth WG Editor
  • OpenID Board Member

  • 🎥 YouTube Tutorials and Reviews
  • 🏠 We're building a triplex!
  • ⭐️ Life Stack
  • ⚙️ Home Automation
  • All
  • Articles
  • Bookmarks
  • Notes
  • Photos
  • Replies
  • Reviews
  • Trips
  • Videos
  • Contact
© 1999-2025 by Aaron Parecki. Powered by p3k. This site supports Webmention.
Except where otherwise noted, text content on this site is licensed under a Creative Commons Attribution 3.0 License.
IndieWebCamp Microformats Webmention W3C HTML5 Creative Commons
WeChat ID
aaronpk_tv