Krebs on Security

AUGUST 30, 2022

The missives asked users to click a link and log in at a phishing page that mimicked their employer’s Okta authentication page. Those who submitted credentials were then prompted to provide the one-time password needed for multi-factor authentication. That’s down from 53 percent that did so in 2018, Okta found.

Mobile 288

Mobile Phishing Authentication Accountability 288

Krebs on Security

NOVEMBER 23, 2018

‘Tis the season when even those who know a thing or two about Internet scams tend to let down their guard in the face of an eye-popping discount or the stress of last-minute holiday shopping. Postal Service , or their wireless phone provider and/or Internet Service Provider (ISP). Maybe this was once sound advice.

Scams 272

Scams Wireless Phishing Banking 272

Krebs on Security

FEBRUARY 28, 2023

Countless websites and online services use SMS text messages for both password resets and multi-factor authentication. But in a written statement, T-Mobile said this type of activity affects the entire wireless industry. T-Mobile declined to answer questions about what it may be doing to beef up employee authentication.

Mobile 310

Mobile Phishing Authentication Advertising 310

Krebs on Security

JULY 29, 2021

Our continued reliance on passwords for authentication has contributed to one toxic data spill or hack after another. TARGETED PHISHING. So hopefully by this point it should be clear why re-using passwords is generally a bad idea. From there, the attackers can reset the password for any online account that allows password resets via SMS.

Passwords 355

Passwords Password Management Phishing Scams 355