That doesn't make me feel great about two-factor authentication through my VM ph... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		BadassFractal on Sept 18, 2012 \| parent \| context \| favorite \| on: Virgin Mobile leaves six million subscriber accoun... That doesn't make me feel great about two-factor authentication through my VM phone.

0xbadcafebee on Sept 18, 2012 [–]

Good! This is just a better example of why SMS and non-encrypted-and-authenticated connections for two factor are silly. If you use an HTTPS web app for two-factor (or a pin-generating app, no network required) you should be reasonably secure - unless some Android malware is in your phone.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact