Skip to main content

End of the 2- Step Verification

We all are familiar with the option which is available to all of the gmail users while signing in, in their gmail accounts. Yes, that 2- Step Verification is coming to an end.2-step verification has proved to be insecure as anybody else can take your mobile phone and can get the verification code and obviously can hack into your Gmail account.




Meaning of 2- Step Verification-

If you have enabled the 2-Step Verification on your G-mail account then you have to face an extra step for signing into your account.You will receive a verification code on your registered mobile number and then the same code you have to write on the screen provided. Then only you will be able to sign in, into your account.

Sayings of (NIST)

Us National Institute of Standards and Technology (NSIT) has claimed that the 2-Step Verification is insecure and it should be banned in Future for security reasons.

You can also read the absolute sayings of NIST here-

"If the out of band verification is to be made using an SMS message on a public mobile telephone network, the verifier SHALL verify that the pre-registered telephone number being used is actually associated with a mobile network and not with a VoIP (or other software-based) service. It then sends the SMS message to the pre-registered telephone number. Changing the pre-registered telephone number SHALL NOT be possible without two-factor authentication at the time of the change. OOB [Out of band verification] using SMS is deprecated, and will no longer be allowed in future releases of this guidance."

2-Step verification is Insecure-

So according to NSIT, 2- Step Verification is insecure because it is too easy to gain access to your gmail account using this option. Because it is too easy to gain access to the mobile phone of yours and anybody can gain acces to the verification code.
 Most of the smartphones, even show the verification code on the lock screen of the smartphone. So it means anyone who doesn't know your mobile password, can also gain access to the verification code and simultaneously to the gmail account also. 

NIST suggests Biometric method for Better security

Biometric method allows you to sign up in your account using your body parts whether it is Eye Retina scan or Finger-print scanner. Mainly it is said that in the future there will be the option to sign in into your account using your Finger and obviously the password will also be there.

However, Last month Google has made its 2- Step Verification as fast as possible. As now we just have to Tap on the verification code received on the registered mobile phone and you are done.

Hope these methods will come as early as possible as our security will be improved far more than today.

Comments

Popular posts from this blog

How to hack Andriod using Stagefright Vulnerability

Today i am going to demonstrate a exploit to take reverse shell in android,before i explain the demo i want to explain some things related to  this hack or exploit and also this for education and awareness about security of your devices.
What is Stagefright?
Android includes Stagefright, a media playback engine at the native level that has built-in software-based codecs for popular media formats.

Stagefright audio and video playback features include integration with OpenMAX codecs, session management, time-synchronized rendering, transport control, and DRM.

Stagefright also supports integration with custom hardware codecs provided by you. To set a hardware path to encode 
and decode media, you must implement a hardware-based codec as an OpenMax IL (Integration Layer) component.  

How hacker can exploit this Stagefright Library?
This critical vulnerability was discovered by a researcher at Cyber Security Firm called Zimperium. This  vulnerability is a type of buffer overflow attack and in thi…

The Best way to Track your Facebook Login Location and Receive the Login Alerts

I think about One-Fourth of the total world population is on Facebook and Whatsapp. Facebook hacking has become common so we all should look towards our safety so that no one else could use our account for something doing illegal purposes and we should know that when our account was last logged in and from which location.

By the Way Facebook provides both the Features for your Safety and has a lot of many Additional Features.When someone or you log in into your account, facebook notify you by sending you a message at your Registered Phone Number and your registered Email-ID.It also has a feature that you can see at which place you were last logged in.

Follow the Below Steps to Track your Facebook Login Location ::

1)First of all open up a browser and log in into your Facebook account.
2)At the Right most End below the Address Bar there will be a Down Arrow.Click on that arrow.
3)Now click on the Settings Option.Then Click on Security below the General option.
4)Now click on the Edit button …

How to Transfer Your Android SmartPhone to PC from Wifi Wirelessly The Best Way

Everybody in today's World is on Internet and they have become very Modern and Work Smartly in their life and make full use of the Internet to do their work more efficiently and Simply.
If you have a Android Smart Phone,What would you do if you want to see your mobile stuff on your Windows ?Buy a Card Reader or use a Data Cable or use Shareit or something like that to transfer your Data to your Windows and Then Access it.
I got a Better and Of course a Smart Way to do this with a help of a Simple app called Airdroid.And I bet you that It will the Best Android App you have ever seen.

Follow the Below Steps to Transfer your Android Phone to PC ::

1)Download the Airdroid App from PlayStore and install it.
2)Open the App and first Sign Up.You can Sign up using Google+,Facebook or Twitter also.
3)A small Window will appear asking for View all App and System Notifications on the Computer in real time.Click on the Enable Button.
4)Then your Mobile Accessibility Settings will be open.Under the S…