I bet the security officer of a large brewing company (I was the IT director there) that I could get the president's salary within 24 hours. he said "impossible without physical access, all that stuff is on a spreadsheet on a pc disconnected from the network, etc" I assured him there would be no physical access and gave him the president's salary the next morning. I phoned his administrative assistant to check on the pc because I needed the exact number for a presentation I was working on.
Are there any bad (defined as "worse than having no 2FA") options for two-factor authentication (2FA)? (SMS text, email, dedicated app, dongle, built-in to password manager)?
I bet the security officer of a large brewing company (I was the IT director there) that I could get the president's salary within 24 hours. he said "impossible without physical access, all that stuff is on a spreadsheet on a pc disconnected from the network, etc" I assured him there would be no physical access and gave him the president's salary the next morning. I phoned his administrative assistant to check on the pc because I needed the exact number for a presentation I was working on.
Potential question for your upcoming writing:
Are there any bad (defined as "worse than having no 2FA") options for two-factor authentication (2FA)? (SMS text, email, dedicated app, dongle, built-in to password manager)?
I don’t understand password managers so I’m looking forward to anything you can teach me