Ride The Lightning. The warning originated from Alex Weinert, Director of Identity protection at Microsoft.

16, 2020 november

Microsoft: Stop Utilizing Phone-Based Multifactor-Authentication!

On November 12, ZDNet stated that Microsoft is urging users to avoid utilizing telephone-based multi-factor verification (MFA) solutions like one-time codes delivered via SMS and sound phone calls and rather change these with more recent MFA technologies, like app-based authenticators and protection tips.

While robust passwords go a long way securing your valuable online accounts, hardware-based two-factor verification takes that protection to your level that is next.

For the previous 12 months, Weinert is advocating on Microsoft’s behalf, urging users to embrace and enable MFA with their online reports.

Centered on internal Microsoft data, Weinert stated in a post just last year that users whom enabled multi-factor authentication (MFA) wound up blocking around 99.9percent of automatic assaults against their Microsoft reports.

In a follow-up blog that is recent, Weinert states that when users need to choose from multiple MFA solutions, they need to avoid telephone-based MFA.

Weinert claims that both SMS and vocals phone calls are sent in clear text and that can easily be intercepted by attackers, utilizing methods and tools like software-defined-radios, FEMTO cells, or SS7 intercept services. Continue reading