Photo: Electronic Frontier Foundation
In this Technology Today, we chat about faults with two-factor authentication, and what Instagram is allowing, in order to address this vulnerability.
INSTAGRAM BOOSTING SECURITY
Last week, Instagram announced they will be granting users the ability to sign into their accounts with third-party security apps; as their two-factor authentication is simply not cutting it.
Third-Party Security Apps to Try
With Instagram's current two-factor authentication - must turn this feature on to use - you receive a text or SMS message to the number on file. The text/SMS will contain a security code you submit, in order to finish the login process. This may sound like it would be enough to detour a hacker, and prevent malicious activity, unfortunately, it's not. Hacking your cell, to obtain said security code, is easier than one would think. Kraken explained it best with an analogy of a 'third-rate' coat-check -
Hacker: Can I have my jacket?
Telco: Sure, can I have your ticket?
Hacker: I lost it.
Telco: Do you remember the number?
Hacker: Nope, but it’s that one right there. ;)
Telco: Ok cool. Here ya go. Please rate 10/10 on survey ^_^
Instagram's parent company, Facebook, has it's own security solution in place - Code Generator. You must be logged in on a computer, in order to set it up.*
It is pretty simple - while you have Code Generator activated, if you login to your account from a different browser or cell, you'll be prompted to enter the code, into your mobile app.
We love that Code Generator's codes expire after 30 or 60 seconds - depending on the mobile device you're using. They will also still populate, even if you don't have text/SMS ability or internet connection.
WHAT DO YOU THINK?
What do you think about Instagram's current two-factor authentication, third-party security apps, and the way parent company, Facebook, is navigating security solutions? Sound off below.
Remember, two-factor authentication doesn't stop at social media - is your office protected? Circulent offers 2FA. Learn more, today!
Did you find this blog informative? If so, be sure to subscribe to our emails!
Until next time, Techies!