To some of us, two-factor authentication (2FA) is a welcome aspect of online security; to others, token or SMS-based login codes are just extra online hassle we'd rather do without.
Duck and Chet help you evaluate the risks and rewards of 2FA in this enjoyable quarter-hour podcast.
We've written recently about Apple and Automattic starting to offer two-factor authentication (2FA) for online accounts.
Word on the street says that Microsoft will soon be doing the two-step, too...
With WordPress.com powering more than 60 million websites worldwide, anything to improve the safety and security of its users is to be welcomed.
Paul Ducklin tries out the new WordPress 2FA service on his Naked Security account...
Have you joined thousands of others, and become a loyal listener to the "Chet Chat" yet?
Here's the latest Naked Security podcast, Sophos Security Chet Chat 105, discussing a range of recent and newsworthy topics from the world of computer security.
After celebrity Web 2.0 journalist Mat Honan had all his iDevices remote-wiped by a cybercrook last year, Apple's login security has been under scrutiny.
Good news! Apple has finally bitten the bullet and started offering two-factor verification for Apple ID users...
Two more alleged cybercrooks are cooling their heels in custody this weekend.
The modern-day bank robbers are said to have run a scam that allowed them to work around the two-factor authentication protection offered by the victims' banks.
PayPal will sell you an authentication token that can greatly boost your account security.
But you can skip token authentication easily. Find out how, and vote in our poll to say what you think of this feature...
Facebook to exclude phone numbers from reverse lookup - for users of two-factor authentication, anyway
Facebook's SMS-based login security was a Catch-22. You had to give Facebook your phone number to improve security. But that exposed your phone number to the vagaries of the Facebook search system.
That's now changed, but apparently only temporarily, while Facebook decides what happens next.
A few weeks ago, Dropbox reported a data breach and promised two-factor authentication as part of its security response.
The good news is that the company is already starting to deliver on that promise...
It's no good having mandatory data breach disclosure laws if all they teach us is to admit we had a breach. We also need to convey information of obvious practical value to all affected parties.
Three words. Promptness. Clarity. Openness.